Principal Application Security Penetration Tester
Posting Description:
Job Title: Principal Application Security Penetration Tester
Aon is in the business of better decisions
At Aon, we shape decisions for the better to protect and enrich the lives of people around the world.
As an organization, we are united through trust as one inclusive, diverse team, and we are passionate about helping our colleagues and clients succeed.
What the day will look like
Gotham Digital Science, LLC seeks a Principal Application Security Penetration Tester based out of headquarters in New York, New York to conduct information security analyses under limited supervision. Perform penetration testing. Conduct hybrid web application security assessments, including code review and application testing.Apply both static and dynamic source code analysis techniques for web application security assessments. Write test harnesses to help identify and proof-of-concept potential security vulnerabilities. Review and analyze source code using Java, C#, C/C++, PHP, Ruby, Python, Go, Swift, Objective C/C++, and Kotlin.
Document technical issues identified during security assessments, outline the associated risks, and provide recommendations for remediation. Conduct information security assessments on Unix and Windows operating systems. Perform code reviews using scanning tools including Fortify and Semgrep.
Conduct security assessment of web applications using testing techniques and tooling, including Burp Suite and fuzzers/proxies. Assist with pre-sales scoping activities for penetration testing engagements. Offer technical mentorship to junior engineers.
Engage in vulnerability research to produce blog posts, conference talks, and whitepapers. Suggest process improvements. Develop, update, and improve internal tooling used for reporting and penetration testing. Telecommuting available 5 days per week. May travel to various and unanticipated worksites throughout the United States.
Annual salary: $108,900 - $181,500.
Job Location: One Liberty Plaza, 165 Broadway, New York, New York 10006
Skills and experience that will lead to success
Bachelor’s degree in Computer Science, Information Systems, or a related field plus six months of information security experience. Must have at least six months of experience in each of the following: 1. Performing penetration testing; 2. Conducting security assessment of web applications using testing techniques and tooling, including Burp Suite and fuzzers/proxies; 3.Performing code reviews using scanning tools including Fortify and Semgrep; 4. Reviewing and analyzing source code using Java, C#, C/C++, PHP, Ruby, Python, Go, Swift, Objective C/C++, and Kotlin; and 5. Conducting information security assessments on Unix and Windows operating systems.
How we support our colleagues
In addition to our comprehensive benefits package, we encourage a diverse workforce. Plus, our agile, inclusive environment allows you to manage your wellbeing and work/life balance, ensuring you can be your best self at Aon. Furthermore, all colleagues enjoy two “Global Wellbeing Days” each year, encouraging you to take time to focus on yourself.We offer a variety of working style solutions, but we also recognize that flexibility goes beyond just the place of work... and we are all for it. We call this Smart Working!
Our continuous learning culture inspires and equips you to learn, share and grow, helping you achieve your fullest potential. As a result, at Aon, you are more connected, more relevant, and more valued.
Aon values an innovative, diverse workplace where all colleagues feel empowered to be their authentic selves. Aon is proud to be an equal opportunity workplace.
Aon provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, domestic partner status, or other legally protected status.Aon is committed to a diverse workforce and is an affirmative action employer. People with criminal histories are encouraged to apply.
We provide individuals with disabilities reasonable accommodations to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment in accordance with applicable law.Please contact us to request an accommodation on ReasonableAdjustments@Aon.com
Salary range or hourly pay range for the position
The salary range for this position is $108,900 - $181,500 annually.
A summary of all the benefits offered for that position
Aon offers a comprehensive package of benefits for full-time and regular part-time colleagues, including, but not limited to: a 401(k) savings plan with employer contributions; an employee stock purchase plan; consideration for long-term incentive awards at Aon’s discretion; medical, dental and vision insurance, various types of leaves of absence, paid time off, including 12 paid holidays throughout the calendar year, 15 days of paid vacation per year, paid sick leave as provided under state and local paid sick leave laws, short-term disability and optional long-term disability, health savings account, health care and dependent care reimbursement accounts, employee and dependent life insurance and supplemental life and AD&D insurance; optional personal insurance policies, adoption assistance, tuition assistance, commuter benefits, and an employee assistance program that includes free counseling sessions.Eligibility for benefits is governed by the applicable plan documents and policies.
How to Apply
To apply, please send resume to aonresumes@aon.com and cite requisition number 00634, apply at jobs.aon.com, or click the apply button. This notice is subject to Gotham Digital Science, LLC’s employee referral program.