1+ months

Web Application Penetration Tester

Discovery Communications
Sterling, VA 20164
Apply Now
Apply on the Company Site
  • Job Code
    115302616
  • Jobs Rated
    20th
Discovery Communications


Web Application Penetration Tester

US-VA-Sterling

Job ID: 24974
Type: Company Employee Full-Time
# of Openings: 1
Category: IT & Technical Operations
US-VA-Sterling

Overview

The Application Penetration Tester will have strong web and mobile application development and security skills. This is a hands-on role that will utilize development skills and involves coding. They understand how to scale operations to support a large organization. They have expertise coding, allowing them to solve diverse problems as part of daily penetration testing tasks on web/mobile applications. They work well with a team and will strive to support helping Discovery strengthen its external footprint. They understand how modern web and mobile applications are built. They have experience building web and mobile applications as well as APIs. They understand the various communication protocols. There are plenty of interesting projects to work on, including security assessments of a wide variety of web applications, web services, mobile applications, and more.



Responsibilities

1. Develop and execute security assessment test plans, document and present results
2. Perform design analysis, review, piloting, and selection of security technologies that meet specified application/business requirements, as needed
3. Work collaboratively and proactively across the organization (e.g., Technical Architects/Leads, Product managers, Digital Media Program Teams, etc.) to support and remediate security gaps
4. Maintain knowledge of current and emerging secure application technologies/products/trends related to architectural solutions; actively and continuously share this knowledge with others
5. Communicate Findings/Remediation Guidance/Security Design Patterns to development teams in a concise and succinct manner
6. Increase knowledge in application security through self-study, training, and certifications.
7. Stay connected to emerging technologies/industry trends and apply them into operations and activities



Qualifications

* 5+ years of cybersecurity architecture, engineering, Penetration Testing and/or application security (appsec, netsec)
* 3+ Years of programming experience with at least one of the following: PHP, Python, Ruby, Javascript, perl, java, c#, c or c++
* Security, Software Development and Scripting Experience
* Web/Mobile Application Penetration Testing Experience
* Web Services Security Penetration Testing Experience
* Database Experience
* Experience deploying solutions in a public cloud environment (IaaS, PaaS, SaaS)
* Familiar with application security tools like BurpSuite, ZAP, Nmap, Metasploit, and Kali Linux, etc.
* Strong Knowledge of TCP/IP, DNS, HTTP, HTTPS, VPN, SQL
* Understand specific protocols and their implementations such as OAuth and SSO
* Experience with Unix/Linux and Windows operating systems
* Excellent communication and presentation abilities with great attention to detail
* One or more of the following certifications are highly desired: CREST, GIAC, CEH, OSCP, OSWE, OSCE, OESEE, CCNA, GPEN, GWAPT, or GXPM
* Must be fluent in English and if possible, French or Polish

* Must have the legal right to work in the United States

Sterling, Virginia, VA

Discovery Communications, Inc. is an equal opportunity employer. Discovery is committed to being an employer of choice, not just a good place to work, but a great and inclusive place to work. To that end, we strive to recruit and maintain a workforce that meaningfully represents the diverse and culturally rich communities that we serve. Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, sexual orientation, gender identity, protected veteran status or disabled status or, genetic information.

EEO is the Law

Pay Transparency Policy Statement

If you are an individual with a disability and need an accommodation during the application process, please send an email request to HR@discovery.com.

PI115302616

<b>Discovery Communications</b><br/><br/><br/><b>Web Application Penetration Tester</b><br/><br/>US-VA-Sterling<br/><br/><b>Job ID:</b> 24974<br/><b>Type:</b> Company Employee Full-Time<br/><b># of Openings:</b> 1<br/><b>Category:</b> IT & Technical Operations<br/>US-VA-Sterling<br/><br/><b>Overview</b><br/><br/><p style="margin: 0px;">The Application Penetration Tester will have strong web and mobile application development and security skills. This is a hands-on role that will utilize development skills and involves coding. They understand how to scale operations to support a large organization. They have expertise coding, allowing them to solve diverse problems as part of daily penetration testing tasks on web/mobile applications. They work well with a team and will strive to support helping Discovery strengthen its external footprint. They understand how modern web and mobile applications are built. They have experience building web and mobile applications as well as APIs. They understand the various communication protocols. There are plenty of interesting projects to work on, including security assessments of a wide variety of web applications, web services, mobile applications, and more.</p><br/><br/><b>Responsibilities</b><br/><br/><p style="margin: 0px;">1. Develop and execute security assessment test plans, document and present results<br />2. Perform design analysis, review, piloting, and selection of security technologies that meet specified application/business requirements, as needed<br />3. Work collaboratively and proactively across the organization (e.g., Technical Architects/Leads, Product managers, Digital Media Program Teams, etc.) to support and remediate security gaps<br />4. Maintain knowledge of current and emerging secure application technologies/products/trends related to architectural solutions; actively and continuously share this knowledge with others<br />5. Communicate Findings/Remediation Guidance/Security Design Patterns to development teams in a concise and succinct manner<br />6. Increase knowledge in application security through self-study, training, and certifications.<br />7. Stay connected to emerging technologies/industry trends and apply them into operations and activities</p><br/><br/><b>Qualifications</b><br/><br/><p style="margin: 0px;">* 5+ years of cybersecurity architecture, engineering, Penetration Testing and/or application security (appsec, netsec)<br />* 3+ Years of programming experience with at least one of the following: PHP, Python, Ruby, Javascript, perl, java, c#, c or c++<br />* Security, Software Development and Scripting Experience<br />* Web/Mobile Application Penetration Testing Experience<br />* Web Services Security Penetration Testing Experience<br />* Database Experience <br />* Experience deploying solutions in a public cloud environment (IaaS, PaaS, SaaS)<br />* Familiar with application security tools like BurpSuite, ZAP, Nmap, Metasploit, and Kali Linux, etc. <br />* Strong Knowledge of TCP/IP, DNS, HTTP, HTTPS, VPN, SQL <br />* Understand specific protocols and their implementations such as OAuth and SSO<br />* Experience with Unix/Linux and Windows operating systems <br />* Excellent communication and presentation abilities with great attention to detail<br />* One or more of the following certifications are highly desired: CREST, GIAC, CEH, OSCP, OSWE, OSCE, OESEE, CCNA, GPEN, GWAPT, or GXPM <br />* Must be fluent in English and if possible, French or Polish</p><p style="margin: 0px;">* Must have the legal right to work in the United States</p><p style="margin: 0px;"><span style="color: #ffffff;">Sterling, Virginia, VA</span></p>Discovery Communications, Inc. is an equal opportunity employer. Discovery is committed to being an employer of choice, not just a good place to work, but a great and inclusive place to work. To that end, we strive to recruit and maintain a workforce that meaningfully represents the diverse and culturally rich communities that we serve. Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, sexual orientation, gender identity, protected veteran status or disabled status or, genetic information. <br><br> <a href="https://discovery.icims.com/icims2/servlet/icims2?module=AppInert&action=download&id=581131&hashed=1619517695">EEO is the Law</a> <br><br> <a href="https://discovery.icims.com/icims2/servlet/icims2?module=AppInert&action=download&id=588767&hashed=2014725565">Pay Transparency Policy Statement</a><br><br> If you are an individual with a disability and need an accommodation during the application process, please send an email request to HR@discovery.com. <img src="https://analytics.click2apply.net/v/ozoONWfEQYR4I6d4umnkK"> <p>PI115302616</p>

Jobs Rated Reports for Web Developer

Posted: 2019-11-08 Expires: 2019-12-09

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Web Application Penetration Tester

Discovery Communications
Sterling, VA 20164

Join us to start saving your Favorite Jobs!

Sign In Create Account
Web Developer
20th2018 - Web Developer
Overall Rating: 20/220
Median Salary: $67,990

Work Environment
Very Good
32/220
Stress
Low
48/220
Growth
Good
53/220
Powered ByCareerCast