KPMG Security Penetration Tester in Montvale, New Jersey
Business Title: Security Penetration Tester
Requisition Number: 68564
Function: Business Support Services
Area of Interest: Information Technology
The fastest growing Big Four professional services firm in the U.S., KPMG is known for being a great place to work and build a career. We provide audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.
KPMG is currently seeking a Security Penetration Tester, to join KPMG Technology.
Perform hands-on application security penetration testing and help design and improve the security testing artifacts and process
Create security test plans and test cases; present test findings and interface with stakeholders
Provide guidance to developers on recommended controls and countermeasures
Develop detailed work plans, schedules, resource plans for recurring penetration tests and act as liaison with external third party penetration testers
Establish and report on metrics to gauge pen testing effectiveness, progress and key risk areas identified through audits, as well as monitor remediation activities
Maintain awareness of the current security threat landscape
Minimum five years experience performing IT security testing with preferred experience in code review, mobile application and operating system testing
Experience with commercial application scanning tools such as Fortify or NTOSpider, as well as in-depth knowledge of proxying tools such as Paros, Burp, and WebScarab
Web application penetration testing experience and familiarity with common penetration testing tools
Bachelor's degree from an accredited college or university; Master's degree from an accredited college or university is preferred
Certified as GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN), or Certified Ethical Hacker (CEH)
Professional certifications such as CISM, CISSP or equivalent is preferred
KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, creed, religion, age, sex/gender, national origin, ancestry, citizenship status, marital status, sexual orientation, gender identity or expression, disability, physical or mental handicap unrelated to ability, pregnancy, veteran status, unfavorable discharge from military service, genetic information, or other legally protected status. KPMG maintains a drug-free workplace. KPMG will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable local, state or federal law (including San Francisco Ordinance number 131192). No phone calls or agencies please.