SAS

  • Associate Test Engineer, Security Specialist

    Job Locations US-NC-Cary
    Requisition ID
    20022755
    Category
    Research and Development
    Visa Sponsorship
    No
    Travel Requirements
    None
  • Overview

    Germany SAS

     

    We are looking for a highly motivated Security Specialist to join our team! As an Associate Test Engineer Security Specialist within the QUEST division, you will be a key contributor to efforts across R&D to deliver secure software, verify its integrity, and mature security testing initiatives. Successful candidates must have the ability to drive a security testing strategy and perform penetration testing to model attackers. This position requires a diverse set of skills including automating security testing tasks, knowledge of security architecture, vulnerability assessment, ethical hacking and threat modeling.

     

    Primary Responsibilities:

    • Design, develop, and execute test plans, scenarios, and/or processes as related to performing penetration testing of SAS web-based applications
    • Analyze security vulnerability test results  and recommend corrective action
    • Interact directly with the software security team and developers to evaluate security vulnerability findings
    • Participate in the Product Security Incident Response process
    • Identify and verify security defects
    • Participates in project scoping and scheduling of penetration testing efforts; tracks progress of individual tasks and communicates status and risks
    • Keep current of the latest security best practices, staying abreast of new threats and vulnerabilities
    • Help disseminate security information to product testing teams within the R&D organization

    Essential Qualifications: 

    • Bachelor's degree Computer Science with a concentration in Cyber Security or 2+ yrs of experience in penetration testing. 

    Preferred Qualifications:

    • Working Knowledge of multiple well known Dynamic Application Security Testing (DAST) tools (Appscan, AppSpider, BurpSuite)
    • Experience with configuring secure environments for application deployments (proxy servers, network security, TLS, firewalls)
    • Experience automating tasks via various scripting languages (Python, Ruby, and/or Shell)
    • Experience with securing cloud environments such as AWS, Openstack, Azure, etc.
    • Experience with cryptography principles
    • Demonstrated understanding of TCP/IP networking
    • Knowledge of application security practices and procedures
    • Ability to utilize both manual and automated attack methods
    • Certified in one of the following: (CPT, CEPT)
    • Solid understanding of Linux and Windows system administration.

     

    Additional Information:

    To qualify, applicants must be legally authorized to work in the United States, and should not require, now or in the future, sponsorship for employment visa status.SAS is an equal opportunity employer.  All qualified  applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. The level of this position will be determined based on the applicant's education, skills and experience. Resumes may be considered in the order they are received. SAS employees performing certain job functions may require access to technology or software subject to export or import regulations. To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment. SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process.

     

    Want to stay up to date with SAS culture, products and jobs? Follow us on LinkedIn LinkedIn Logo

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share with your networks