Web Application Penetration Tester
Do you view a roadblock as the end of a project or are you excited by the opportunity to troubleshoot and get creative? Do you have extensive knowledge of software development and how web and mobile applications are built? Do you have experience with Penetration Testing?
Look no further because this is the role for you! IT Security is our business and at Digital Boundary Group we have an exciting, challenging and collaborative environment where you will have the opportunity to work with customers in every sector to find exploitable holes in their operations and provide your advice on improving their security posture.
We have an amazing group of bright, talented and experienced people who are driven to learn and grow. We provide flexible working hours, health and dental benefits, retirement savings plans, vacation time and paid continuous learning opportunities. We also share the company’s profits with the team! Digital Boundary Group gives back to the community through both donations and volunteering and takes steps to support environmental improvements at our organization.
Don't take my word for it, hear it straight from the tech team...
Why our Team likes working here:
- Focus on purely red team activities
- DBG is vendor-agnostic and does not sell remediation services or security controls. This eliminates conflicts of interest but also ensures you are mainly focused on the exciting part of infosec: hacking in and telling clients how you did it. We provide clients with general information on remediation strategies for each finding, but never do implementation.
- Think like a hacker
- While we do maintain a standard methodology for consistency and quality, testers are encouraged to think outside the box when working on challenging engagements.
- Our web application penetration test product allows testers to execute hacking techniques in real-world scenarios and to discover unique and interesting vulnerabilities. No two tests are ever quite the same. If we can achieve the ultimate goal, code execution, we get to ring a bell that sounds throughout the office and show off our prowess.
- Our goal is to simulate sophisticated real-world attacks and our customers understand this.
- Supportive Learning
- There are many talented individuals working at DBG. A lot of us are ex-sysadmins and developers and we are always available face to face or via team chat to answer questions or jump in on a test if you’re stumped.
- Our methodology is well-documented and updated regularly.
- If we find something no longer works as well as it used to, you may be tasked with testing out new tools and techniques to evaluate, document and add to our formal methodology.
Web Application Penetration Tester
What you’ll be doing:
- Performing web and mobile application security assessments
- Performing vulnerability scans
- Assisting in the development of in-house testing tools and processes
- Writing client reports with your findings and recommendations
- Researching and learning about information security trends, new testing techniques, and best practices, and share findings with the team
Knowledge and skills you need to do it:
- Knowledge of database management systems such as MySQL, SQL Server, PostgreSQL, and Oracle
- Ability to work independently and within a team
- Attention to detail
- Troubleshooting Skills
- Knowledge of OWASP Top Ten project
- Demonstrated report writing capabilities and strong communication skills
- Fluent in English; Experience in a second language is considered an asset
Additional experience considered an asset:
- Experience with Ruby
- Knowledge of operating systems such as Windows Server, Windows 7/8/10, and Linux
- Basic knowledge of network devices such as firewall, routers, and switches
- Familiarity with iOS and Android SDKs
- Certifications such as the GSEC, GWAPT and OSCP
Education and Experience:
- Diploma or Degree in computer programming, computer science, computer engineering, or related field, or equivalent training and professional experience
- Working experience with computer programming
- Due to the nature of the business satisfactory completion of pre-employment checks are required
How to Apply:
- If this sounds like the right opportunity for you, apply now! Be sure to include a resume and cover letter and tell us why you are the person we’ve been looking for!
Digital Boundary Group is an equal opportunity employer. We are committed to providing accommodation to applicants with disabilities. Please let Human Resources know if you require accommodation during the recruitment process.