We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search

Job posting has expired

#alert
Back to search results / More jobs like this
Back to search results
Aon jobs

Security Testing Manager

Aon
United States, New York, New York
August 31, 2022
Aon is looking for a Security Testing Manager, Principal Consultant The Proactive Security Testing team is looking for smart, energetic, and motivated individuals to add to its team. We provide a challenging and exciting work environment that offers a healthy combination of autonomy and senior level support. Our team publishes books and security blogs, delivers conference talks, contributes to open source software projects, and are engaged in a variety of continuous security research projects. As a Principal Security Consultant (termed internally as a "Security Testing Manager") you will serve as a senior member of the penetration testing team and be expected to: Provide technical mentorship and career development advice to junior engineers within the organization Perform complex pen testing projects in the realms of red teams, network penetration testing (external & internal), reverse engineering, web/mobile application penetration testing, source code review, etc. Execute penetration testing projects according to internal testing methodology, tools, and processes Document technical issues identified during security assessments to articulate the risk to the client, as well as provide tailored recommendations for remediation. Perform vulnerability research and exploit development Assist with internal business operations such as service line development, process improvements, and recruiting new pentesting talent You Bring Knowledge and Expertise Required Experience: The following are expected from potential applicants: 4+ years of experience with penetration testing against web/mobile applications, above and beyond running automated tools. 4+ years of experience with network/infrastructure penetration testing. Some development and/or source code review experience in one or 2 of these: Java, C#, C/C++, PHP, Ruby, Python, Go, Swift, Objective C/C++, Kotlin, etc. Familiarity with application layer assessment tools, such as Burp Suite and other fuzzers/proxies. A good understanding of Unix, Windows and network security skills. Ability to work both independently and perform as a leader in a team environment. Ability to travel to client sites when required. - **Current travel is HIGHLY limited due to COVID-19** Excellent communication skills in English (both written and oral); able to concisely communicate security risks to both technical and business audiences. Preferred Experience: The following skills are not required from applicants but would be considered a plus: Degree in Computer Science, Information Systems, Engineering or related major. Understanding of building and maintaining Red Team Command and Control systems. Reputable security certifications, including: OSCP, OSCE, OSWE, OSEE, OSWP, GPEN, GXPN, CMWAPT Experience working as a consultant at a reputable penetration testing company. Experience working as part of an enterprise development team. Experience developing custom scripts or tools used for vulnerability scanning and identification. Experience with exploit development and reverse engineering Experience with client/server thick client penetration testing. Solid understanding of cryptography fundamentals. Produced public facing research and/or delivered presentations at well known industry security conferences. Education: Bachelor's degree or equivalent years of industry experience. We offer you A competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization. This position is eligible to participate in one of Aon's annual incentive plans. The amount of the incentive varies and is subject to the terms and conditions of the applicable incentive plan. Aon offers a comprehensive package of benefits for full-time and regular part-time colleagues, including, but not limited to: a 401(k) savings plan with employer contributions; an employee stock purchase plan; medical, dental and vision insurance, various types of leaves of absence, paid time off, including sick days and vacation days, short-term disability and optional long-term disability, health savings account, health care and dependent care reimbursement accounts, employee and dependent life insurance and supplemental life and AD&D insurance; optional personal insurance policies, adoption assistance, tuition assistance, commuter benefits, and an employee assistance program that includes free counseling sessions. Eligibility for benefits are governed by the applicable plan documents and policies. Our Colleague Experience: From helping clients gain access to capital after natural disasters, to creating access to health care and retirement for millions, Aon colleagues empower results for our clients, communities, and each other every day. They make a difference, work with the best, own their potential, and value one another. This is the Aon Colleague Experience, defining what it means to work at Aon and realizing our vision of empowering human and economic possibility. To learn more visit Aon Colleague Experience. About Aon: Aon plc (NYSE:AON) is a leading global professional services firm providing a broad range of risk, retirement and health solutions. Our 50,000 colleagues in 120 countries empower results for clients by using proprietary data and analytics to deliver insights that reduce volatility and improve performance. By applying for a position with Aon, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Aon's employment policies. Background checks may include some or all of the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, fingerprint verification, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position. Aon provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, or domestic partner status. Aon is committed to a diverse workforce and is an affirmative action employer. DISCLAIMER: Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. #LI-KH1 2022-52908

(web-5bb4b78774-k29v8)