Penetration Tester
General Information
Req #
WD00071646
Career area:
Cloud Computing
Country/Region:
United States of America
State:
North Carolina
City:
Morrisville
Date:
Wednesday, September 11, 2024
Working time:
Full-time
Additional Locations :
United States of America - North Carolina - Morrisville
Why Work at Lenovo
We are Lenovo. We do what we say. We own what we do. We WOW our customers.
Lenovo is a US$57 billion revenue global technology powerhouse, ranked #248 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world's largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo's continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY).
This transformation together with Lenovo's world-changing innovation is building a more inclusive, trustworthy, and smarter future for everyone, everywhere. To find out more visit www.lenovo.com , and read about the latest news via ourStoryHub (https://news.lenovo.com/) .
Description and Requirements
This position is for a penetration tester in the Security Center of Excellence for the Global PC and Smart Device Business Unit (PCSD). This is an exciting role that will give you the opportunity to work with Product teams around the globe to perform penetration test on PCSD's many products. You will be working alongside the best security teams in the industry. This roll will be responsible to pen test PCSD Products sold around the world. This will include scoping and planning pen tests with the development teams and then leading execution of those pen tests. You'll report findings, produce reports and work with the development and security teams to resolve the issues you and your team members find. You'll stay up to date with the industry's latest techniques and tools. This role will be testing a variety of products and will be well versed in cloud, client, IoT and hardware penetration testing.
You will be researching new penetration tools and techniques, including how AI can help improve efficiencies as well as developing and implementing best new techniques to test AI products. You'll work with development teams to coordinate penetration tests and ensure that products are tested within an appropriate time frame. You will be communicating the priority and risk to development teams. You will have excellent organizational and communication skills ensuring that development teams are well informed of the penetration testing results.
In Summary you will:
Perform penetration tests on PCSD's Cloud, Client and AI products.
Work with development and security teams to find and explain security issues, suggest mitigations, and ensure they are mitigated.
Stay up to date on the latest testing tools and techniques ensure both yourself and the teams are using the most effective methods.
Position Requirements
Basic Qualifications:
Bachelor's degree in a relevant field or equivalent relevant experience
3+ years of cybersecurity experience
2+ years of experience of penetration testing
Strong written and verbal communications and interpersonal skills
Ability to work independently as well as function as an integral part of a team, take initiative and ownership in a fast-paced environment
Ability to successfully work across regions and functions to solve problems and get things done
Preferred Qualifications:
Knowledge of Artificial Intelligence security testing tools and techniques.
Experience with penetration testing and diagnostic tools such Burp Suite, Kali Linux, fuzzing tools, code analyst tools, DAST tools, Metasploit, etc.
Knowledge of Agile processes
Experience working in a development environment.
SANS certifications such as GIAC Cloud Penetration Tester (GCPN), GIAC Certified Forensic Examiner (GCFE), GIAC Certified Incident Handler (GCIH), GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), GIAC Reverse Engineering Malware (GREM), and GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
EC-Council certifications such as Certified Ethical Hacker (ANSI or Practical)
Offensive Security certifications such as Offensive Security Certified Professional (OSCP), Offensive Security Experienced Penetration Tester (OSEP), Offensive Security Web Expert (OSWE), Offensive Security Exploit Developer (OSED), and Offensive Security Exploitation Expert (OSEE
Industry security certifications such as CISSP, Security+, etc.
LI-DB1
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, religion, sexual orientation, gender identity, national origin, status as a veteran, and basis of disability or any federal, state, or local protected class.
Additional Locations :
United States of America - North Carolina - Morrisville
United States of America
United States of America - North Carolina
United States of America - North Carolina - Morrisville