Offensive Security Expert

The opportunity

CISO DBNL is looking for a qualified cyber security professional with recent and relevant working experience as a software security tester. Security testing experience in a Financial environment could be advantageous but not determinant.

Location

Amsterdam or Leeuwarden, hybrid function. Once 1 week in the office and once 1 month to the other location.

The team
You’ll be responsible for the execution of security tests on a wide variety of internal and external facing applications as well as overall maturing our testing capabilities by automation. You also will assist with the continuous improvement of the processes critical to the success of the team. In this role, you will be helping DevOps teams thought-out SDLC.

Roles and responsibilities

• Primary responsibility to provide internal and external network penetration testing, create actionable reporting based on findings, application testing, including black-, grey-, white box, code reviews and reverse engineering, software development advisory, network and software architecture reviews and guidance, social engineering, physical and red team engagements.
• Additionally, you will support with pre intakes/technical intakes, development of security solutions and services, leveraging a robust technology portfolio, to address complex industry recognized information security trends and challenges faced by our respective clients.

How to succeed

We hire smart people like you for your potential. Our biggest expectation is that you’ll stay curious. Keep learning. Take on responsibility. In return, we’ll back you to develop into an even more awesome version of yourself.

• B.S. in Computer Science or related technical major (M.S./PhD preferred), or significant job experience.
• You have a valid (current) ECPPT, OSCP, ECSA, GIAC Pentest Certification.
• 1 to 5 years penetration testing experience, with experience on mobile testing and APIs
• Experience with OWASP testing Guide / Open Source Security Testing Methodology Manual
• Fluent in at least 1 programming language.
• Expert with common web application penetration testing tools including, but not limited to Burp, Fiddler, OWASP Zap, BeEF, and at least one commercial solution (WebInspect, AppScan, or similar).
• Experience deploying enterprise security testing solutions.
• Familiarity with common network vulnerability and penetration testing tools including, but not limited to, Metasploit, vulnerability scanners, Kali Linux, and Nmap.
• Experience with debuggers, disassemblers, binary patch diffing (e.g. BinDiff).
• Experience with testing automation suites such as Cucumber, Jasmine, Selenium.
• Experience with cryptography, X509 certificates, signatures, securing TLS/SSL parameters, and certificate pinning.
• Technical depth in many, if not most of the following areas: Java EE, Node.js, Scala, iOS, Android OS, Windows Mobile, web services.
• Familiarity with Secure Development Lifecycle practices and Agile development with Continuous Delivery / Integration.
• Knowledge of cloud security
• Thought leadership in the security field, with demonstrable contributions to industry groups strongly desired.
• Artful communication skills and organizational savvy, to steer peers and leadership toward solutions that carefully balance business, risk, compliance, and engineering concerns.
• Eagerness to challenge the status quo, balanced with a reasonable and methodical approach to effecting change.
• A fun and positive attitude!

Rewards & benefits

We want to make sure that it’s possible for you to strike the right balance between your career and your private life. You can find out more about our employment conditions at https://www.ing.jobs/netherlands/Why-ING/benefits.htm

The benefits of working with us at ING include:

• A salary tailored to your qualities and experience
• 24-27 vacation days depending on contract
• Pension scheme
• 13th month salary
• Individual Savings Contribution (BIS), 3.5% of your gross annual salary
• 8% Holiday payment
• Personal growth and challenging work with endless possibilities
• An informal working environment with innovative colleagues
• Work Agile, so new ideas come to life faster

About us

With 57,000 employees and operations in approximately 40 countries, there is no shortage of opportunities for people with initiative who want to help people take a step ahead in life and in business. Do you want to work at the cutting edge of what’s possible and at the same time ensure you work with integrity and hold the customer’s interests at heart? Do you want to be surrounded by progressive, inspiring, diverse and supportive colleagues? Then there is no better place to invest your talents than at ING. Join us. Apply today.