Pay: $65-70/hour W2. Our company offers our consultants a suite of benefits after a qualification period including health, vision, dental, life and disability insurance.
Hybrid role, must be onsite 3x/week in Mountain View, CA
W2 Candidates only
Manager Notes
- This role is focused on Pen Testing for Mobile Application + Android APK Level. Previous interviews have been too focused on web applications and missing the Android piece.
- Hybrid role – 3 days onsite.
- Should be able to read and understand Java & Python, as Java is the native language of Android.
Responsibilites
- Develop expertise in our product solutions, deep diving into design/architecture, & execute white box and black box penetration scenarios.
- Plan, scope and conduct vulnerability assessment/ Penetration test on internal / external facing public assets such as Web application, Android platform, Android Apps, Backend APIs, and Cloud services.
- Research & and conduct adversary simulation for known security threats and identify Client attack vectors to test a system's relative security readiness.
- Conduct Threat modelling, Threat Intelligence and scoping with stakeholders.
- Assist in creating and maintaining internal penetration testing and practice within QA team, managing vulnerabilities and tracking until closure.
- Build Test harness & required Automation suites and validate attack vectors in Threat Lab.
- Co-ordinate with program management, security architects at Internal & offshore sites.
- Stays up to date on current tools, technologies, and vulnerabilities to incorporate into testing practices.
- Research and developing exploits for zero-day vulnerabilities.
- Conduct penetration test on IOT and Firmware Devices.
Requirements
- 5+ years' experience in Penetration testing, including 2+ year experience in Android and 1+ year experience in Web Application.
- Degree in Cyber Security or Security relevant disciplines is a plus.
- Certifications in offensive security: OSCP or OSWA or OSWE or CRTO or BSCP or similar is a plus.
- Comprehensive knowledge in Information Security practices on malware, phishing attacks, attack vectors and methods to protect against threats.
- Knowledge in Java, python or any relevant programming language.
- Malware development or reverse engineering experience is a plus.
Who We Are:
The Fountain Group is a nationwide staffing firm with over 80 Fortune 100-500 clients. Since 2001, TFG has maintained a consistent standard of excellence, and our work is broadly recognized every year through numerous industry performance awards. Our success is a team effort.
Browse our website below for additional information on our company.
The Fountain Group
3407 W Martin Luther King Jr. Dr. Tampa, FL 33607
“We work in Life Sciences, Clinical, Engineering, IT, and more. Above all, we specialize in people.”