Senior Application Security Consultant – PenTester IRC274191

Overview

Senior Application Security Consultant – PenTester IRC at GlobalLogic Latinoamérica. This role is Hybrid: 3 days weekly onsite in Palermo, Buenos Aires.

Position summary

The Senior Consultant works closely with Project Managers, Delivery Directors, and other Delivery team members to lead engagements, assessing the security of various types of client applications and supporting infrastructure against security best practices. The Senior Consultant is a technical leader with broad and deep technical skills, meeting the objectives of their engagements, collaborating with clients, mentoring teammates, and providing subject matter expertise across one or more technical domains. The Senior Consultant is a trusted advisor to clients, and through objective testing and results reporting, supports the client in making well-informed, risk-based decisions to improve overall security posture.

Work environment / travel

Standard office environment

Up to 10% travel

Skills

Essential:

• Excellent consulting skills including: Time management, performing adjacent tasks while ensuring on-time delivery, escalating issues as needed
• Verbal communication, leading client calls for project kickoffs and debrief
• Written communication
• Report writing, for both executive audiences and technical staff
• Expert proficiency in Web Application Penetration Testing
• Excellent overall technical skills, with strong expertise in at least one of the following:
  • Mobile Application Penetration Testing
  • Thick Application Penetration Testing
  • Hardware Penetration Testing
  • Secure Code Review
  • Container Penetration Testing
  • Cloud Penetration Testing
  • Network Active Directory Penetration Testing
  • AI Penetration Testing

Experience

• Essential: Application penetration testing and assessment tradecraft and methodologies (including browser-based, API)
• Strong working knowledge of at least two programming or scripting languages
• Strong understanding of security principles and industry best practices
• Minimum of 5 years' experience in a consulting/professional services role
• Minimum of 5 years' experience in Application Security and/or Software Development

Education

• High school diploma required

Preferred certifications/skills (not required)

• AWAE, OSCP, OSCE, OSEE offensive security certifications
• Significant development and engineering backgrounds
• Cloud service penetration testing tradecraft and methodologies across multiple service providers (e.g. AWS, GCP)
• Mobile platform and application penetration testing for iOS and Android
• Red/Purple Team tradecraft and methodologies
• Social engineering in all its forms
• AWS Certified Solutions Architect – Professional, AWS Certified Security, AWS Certified Advanced Networking, AWS Certified SysOps Administrator
• Network, Database, System administration experience and certifications

Responsibilities

• Working independently and collaboratively with a team to both lead and support
• Perform penetration testing on applications with complex technology stacks from both Blackbox perspective and Whitebox perspective
• Dynamically flex your skills when assessing emerging or custom technologies
• Lead complex engagements to provide a technical consistency approach across multiple tests
• Contextualize vulnerabilities and assess realistic impact to a client accounting for mitigating and aggravating factors
• Manage priorities and tasks to achieve utilization targets
• Operate with professionalism both internally and with clients
• Ensure quality reports and services are delivered efficiently and on time
• Support sales and business growth by scoping out potential opportunities
• Maintain strong depth of knowledge in the practice area
• Collaborate with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables

What we offer

• Culture of caring. At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you'll experience an inclusive culture of acceptance and belonging, where you'll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders.
• Learning and development. We are committed to your continuous learning and development. You'll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally.
• Interesting & meaningful work. GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you'll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what's possible and bring new solutions to market. In the process, you'll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today.
• Balance and flexibility. We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way
• High-trust organization. We are a high-trust organization where integrity is key. By joining GlobalLogic, you're placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do.
• About GlobalLogic GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world's largest and most forward-thinking companies. Since 2000, we've been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services.

Seniority level

• Not Applicable

Employment type

• Full-time

Job function

• Information Technology

Industries

• IT Services and IT Consulting

#J-18808-Ljbffr

---