Subir
Logo Fe Colores Horizontal
P&g Logo Sin Fondo

Senior Offensive Security Engineer, Penetration Testing, Red Teaming

Location San José, San Jose, Costa Rica Category Information Technology Job Id R000089430 Job Type Full time Experienced Professionals

Job Location

San José

Job Description

Are you a person who is passionate about breaking applications, devices, services and/or processes to help protect them against the worlds most advanced cyber security adversaries?

The Information Security Protect organization at Procter & Gamble is responsible for providing a realistic depiction of threat actor behaviors and scenarios during simulated exercises. We drive improvements to applications and systems, as well as detection and response capabilities through regular testing of security controls across the enterprise.

Responsibilities:

  • Provide technical leadership and advice to junior team members on attack and penetration test engagements.

  • Consult, design, and execute adversary simulation scenarios.

  • Perform manual penetration tests of websites, services, infrastructure, networks, IoT Devices, and mobile applications to discover and exploit vulnerabilities.

  • Work with cross functional teams to develop remediation suggestions based on scenario outcomes.

  • Report observations using a standardized reporting structure.

  • Analyze prevention and detection security controls.

  • Assess compromise scenarios in an enterprise environment.

  • Bypass preventative and detective security controls to accomplish scenario goals.

  • Conduct research into real-world threat actor tactics, techniques, and procedures to develop proof of concept tools.

  • Investigate findings from our Bug Bounty program.

  • Partner with Cyber Defense Protect, Detect and Respond teams to operationalize new Cyber Security concepts and processes.

Job Qualifications

Required:

  • BA or BS degree in Information Security, Cyber Security, Computer Science, or related field (OR 5+ years of proven experience required in lieu of a degree).

  • 5+ years of experience performing security testing.

  • Strong analytical skills, able to leverage complex data to identify opportunities, recognize problems, and draw logical conclusions.

  • Expertise exploiting weaknesses in 2 or more of the following domains: enterprise applications, web applications, mobile applications, databases, infrastructure, IoT devices, network and cloud infrastructure, server, mainframe, and directory services.

  • Demonstrated experience exploiting vulnerabilities in an authorized manner.

  • Excellent oral and written communication skills.

  • Excellent scripting and programing skills (Python, PowerShell, C#, Assembly languages)

Preferred Skills:

  • Two or more penetration testing certifications (OSCP, OSWE, GPEN, GXPN, GWAPT, etc.).

  • Publicly released tools or modules.

  • Experience using Vulnerability Identification and Management tools.

  • Experience in CTF competitions or Bug Bounty programs.

  • Experience in mobile (iOS/Android) application development/assessment.

  • Experience in Internet of Things (IoT) security and exploitation.

What we offer!

  • We’ll give you responsibilities as of Day 1 – you will feel the ownership of your project from the beginning, and you will be given specific projects and responsibilities

  • You’ll have continuous mentorship – you will work with passionate people and receive both formal training as well as day-to-day mentoring from your manager

  • We offer you to work and be part of a dynamic and supportive environment

  • We promote agility and work/life balance for employees, we value every individual and support initiatives, promoting.

  • We love flexibility. You can arrange your work schedule based on your personal needs.

  • We will let you experience true support for work/life effectiveness and your long-term well-being.

  • We will give you a competitive salary and benefits’ package.

About us!

P&G serves consumers around the world with one of the strongest portfolios of trusted, quality, leadership brands, including Always®,Ambi Pur®, Ariel®, Bounty®, Charmin®, Crest®, Dawn®, Downy®, Fairy®, Febreze®, Gain®, Gillette®, Head & Shoulders®, Lenor®, Olay®, Oral-B®, Pampers®, Pantene®, SK-II®, Tide®, Vicks®, and Whisper®. The P&G community includes operations in approximately 70 countries worldwide. Please visit www.pg.com for the latest news and information about us and our brands.

We are an equal-opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, or disability status.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Stay connected with us on social media! Follow us for the latest updates, exclusive content, and more.

Job Schedule

Full time

Job Number

R000089430

Job Segmentation

Experienced Professionals (Job Segmentation)

Aplicar para este puesto

 

Aplicar

Otras ofertas laborales

Aplicar para este puesto

 

Aplicar
Regresarazul
Regresar
Created by Alex Volkov
Accessibility by WAH