Equifax

Equifax is looking for a Web Application Penetration Tester to support a FedRAMP program to identify, exploit, and communicate application and network layer risks including development of mitigation or remediation strategies.

What you’ll do

• Operate and maintain a vulnerability management function capable of performing and supporting authenticated and
• unauthenticated dynamic application security testing for all approved FedRAMP systems.
• Under supervision from leadership, manually execute Penetration Testing and Assessment exercises including collaborating in
• Red/Blue team testing exercises.
• Under supervision from leadership, manage multiple engagements and projects simultaneously.
• Develop strong relationships within Security and with FedRAMP IT staff in order to successfully execute security assessments
• and penetration testing.
• Collaborate on integration efforts within Security and with IT partners.
• Management of internal client reporting to ensure risks are captured and prioritized as necessary.

What experience you need

• 3+ years of experience in cyber security.
• 1+ years of experience penetration testing web applications and API’s.
• 1+ years of experience using Burp Suite Pro or equivalent application (e.g. ZAP).
• Strong communication, both verbal and written. English proficiency B2 - C1

What could set you apart

• Experience using OpenText WebInspect On-Prem or SaaS platforms
• Development skills - Python preferred.
• Ability to work independently.
• Ability to explain technical concepts at different levels.

Primary Location:

CRI-Sabana

Function:

Function - Security Governance and Compliance

Schedule:

Full time