- CoStar Realty Information, Inc. (Washington, DC)
- …Integration + Security tooling automation in CI/CD pipelines and IDE interfaces including Static Application Security Testing (SAST) and Static ... Web App Pen Tester Job Description Overview CoStar Group (NASDAQ: CSGP)...production. The candidate will utilize threat modeling, white box application security analysis, and grey box penetration… more
- Northrop Grumman (Sunnyvale, CA)
- …and/or assist journey level testers as required. Qualify, secure, and maintain a security clearance for all tester functions. **TOOLS AND EQUIPMENT:** Steam ... be able to obtain and maintain a government issued security clearance. Must be able to obtain a stationary...tests and operate test facilities and controls to perform static tests on a variety of turbine and auxiliary… more
- Chenega Corporation (Washington, DC)
- …scripts that test all APIs provided by the customer against the Open Web Application Security Project (OWASP) API Top Ten (or alternate criteria as specified) ... **Req ID:** 32871 **Summary** **Intermediate Penetration Tester ** **Hybrid Schedule: In person, in the Washington,...penetration testing (gray and black box), red team testing, static code analysis, dynamic code analysis, and Application… more
- HP Inc. (Austin, TX)
- **What a Penetration Tester does at HP:** The role is part of a talented team of security engineers and architects within HP Cybersecurity's Architecture & ... Security Engineering team. Our security engineers are...+ Research, evaluate, document, and discuss findings with Cybersecurity, application , product, and management teams + Review and provide… more
- Insight Global (Washington, DC)
- …Requirements - 7+ years of experience with source code reviews & pen testing o SAST ( Static Application security Testing) o DAST (dynamic Application ... Job Description Insight Globals client is looking for Lead Application Security Penetration Testers to join their team in Washington, DC. This person will work… more
- Amazon (Austin, TX)
- …research using variety of custom tooling and technologies while scaling security testing (eg symbolic execution, static analyzers, fuzzers, scanners, ... techniques such as symbolic execution, fuzzing, machine learning, and static analysis. The Amazon Devices and Services Trust &... analysis. The Amazon Devices and Services Trust & Security (DSTS) organization was formed in 2014 with the… more
- Lockheed Martin (Fort Worth, TX)
- …Aeronautics\. Be More Than You Can Imagine\. This position is for a cyber security penetration tester supporting the Lockheed Martin Aeronautics Cyber Range (TM) ... \(ACR\)\. The ACR is responsible for conducting cyber security assessments of the products supporting Lockheed Martin Aeronautics platforms\. The candidate is… more