Expectations and job description:
A senior application security member should have a deep understanding of web application PT techniques, Tools and languages such as HTML/PHP/Java/etc. As well as good knowledge of python/perl/ruby development, research and development of application related (web/mobile) exploits, end-to-end project execution and good writing skills for reporting.
She/He would leading and participating in Application PT engagements:
· Initial and status calls with clients (Understand the scope and any requirements from the client)
· Prepare a work plan/checklist for each project in order to estimate time lines and objectives
· Perform the tests (Could be white/gray/black box testing)
· Creating and obfuscating payloads to bypass AV/WAF systems
· Gaining high privileges and move towards the client’s “crown jewels” (DB/PII/sensitive technical date)
· Track and log every (major) action taken with time stamp
· Perform a clean-up at the end of each engagement
· Write a report to be delivered to the client (contains both executive summary and full technical report)
Some of our projects are done remotely from Israel while some are done locally at the client’s site, it is expected to travel abroad every once in a while.
§ Hands-on experience in performing Application Penetration Tests (including Web and Mobile environments).
§ In depth familiarity of Application level vulnerabilities (CSRF, XSS, SQL Injections, Business logic-based vulnerabilities etc.) and mitigations based on industry best practices (OWASP top 10, SANS, NIST).
§ Experience with web application development - Java, ASP.NET, PHP
§ 3+ years of hands-on experience in the financial / Defense / Hi-Tech / Military sectors
§ Experience with leading end-to-end projects (Scoping, Resources allocation, Supervising, Deliverables)
§ Excellent technical written skills in English and Hebrew
§ Knowledge with defense products in the Web Application field
§ Knowledge with the field of secured programming and secured software coding
§ Knowledge with communication protocols
§ 1+ years of leading a technical team - Advantage
§ Experience in Objective-C - Advantage
§ Team player with excellent inter-personal skills.
§ Excellent written, reading, and verbal communication skills in both Hebrew and English
§ The job involves abroad travels
§ Ability to lead projects and communicate with executive customers
§ Representativeness and professional appearance
§ Bachelor’s degree - Advantage
Equal Employment Opportunity Statement
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
Accenture is committed to providing veteran employment opportunities to our service men and women.
Life at Accenture
Work where you're inspired to explore your passions and where your talents are nurtured and cultivated. Innovate with leading-edge technologies on some of the coolest projects you can imagine.
Learn more about Accenture
With over 450,000 employees in more than 120 countries, Accenture solves our clients' toughest challenges by providing a broad range of services and solutions in strategy, consulting, digital, technology and operations.