← Back to Jobs
Contract

Penetration Tester (Java/ Ethical Hacking focus) - Hybrid - Contract to Hire - Experienced Recruiting Partners - Albany, NY

Experienced Recruiting Partners

Apply Now
Albany, NY
Google Jobs
Posted 1 day ago

Onsite role in Albany, NY – two days per week Wednesday/Thursday + every other Friday

Overview:

A Penetration Tester with a focus on Java application security is sought to identify, exploit, and fix vulnerabilities in Java applications to guard against cyber threats.

Key Responsibilities:

Conduct penetration tests and vulnerability assessments for Java applications and infrastructure.Identify security flaws in Java code using automated and manual methods.Create and use custom exploits to test application security, simulating attacker tactics.Collaborate with Development teams to understand application architecture and find security weaknesses early.Collaborate with Testing teams to integrate with manual and automation testing.Provide guidance on secure coding and how to fix vulnerabilities.Stay updated on Java security threats and best practices.Help improve secure development processes (SDLC).Assist in responding to security incidents related to Java vulnerabilities, current published NIST CVE.Clearly document and report findings, including technical details, risk assessment, and recommended solutions.Communicate findings and recommendations to both technical and non-technical staff.Contribute to security policies for Java development and deployment.Manipulate URLs, query parameters and Application browser data to look for penetration avenues. Validate and asses' browser tokens and cache manipulation and Production vs. none prod architecture.Familiar with MITRE ATT&CK Framework.REQUIREMENTS:

Bachelor's degree in Computer Science, Information Security, or a related field.Minimum of 6 years of Development/Security experienceExperience in Penetration Testing/Ethical Hacking with a focus on Java application security.Strong knowledge of Java programming and its security practices as well as scripting experience.Core Java coding experience.Previous job background as an engineer and Dev Sec position on a large scale public enterprise scale application.Proficiency i

Apply for this Position