Apply now

Apply for Job

Security Test Engineer

Date:  Aug 13, 2022
Location: 

USA, USA

Job Category:  R&D
Department:  Product & Technology

Open to Remote Work

 

Who we are:

CyberArk (NASDAQ: CYBR) is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit https://www.cyberark.com, read the CyberArk blogs or follow on Twitter via @CyberArkLinkedIn or Facebook.

 

What you will do:

  • Collaborate with engineering teams on architecting, implementing technologies, processes, and improvements around product security
  • Develop security testing plans to identify misconfigurations, vulnerabilities, and visibility shortfalls
  • Assist, mentor, and educate about internal secure development methodologies and CyberArk  "Security Champions" program.

 

What you need to succeed:

  • 4+ years of experience working in the software development industry as a test engineer or an engineer with responsibilities relating to security
  • Background in Whitebox penetration testing
  • Bachelor’s degree in Computer Science, Computer Information Systems, Software Engineering, or Mathematics or a related field, or its equivalent
  • Programming experience in one or more languages (Java, JavaScript, Python, Shell/BASH, C/C, C#)

 

How you will stand out from the crowd:

  • OSCP certification a huge plus
  • Experience with web application scanning tools (e.g. Static / Dynamic, Interactive, etc.) including Qualys WAS, Appspider, Acutenitx, Veracode, Burp Suite, Netsparker, OWASP Zap, Checkmarx, Whitesource, Snyk or similar
  • Past development expertise or operational or consultative experience supporting application security teams.
  • Threat modeling experience
  • Experience using source code management tools such as Perforce, GIT or equivalent
  • Strong debugging skills and experience performing security code reviews
  • Experience with Active Directory and/or LDAP
  • Understanding of PKI, Certificate security, encryption, HTTPS
  • Strong written and oral communication and collaboration skills, ability to collaborate effectively in team, across team and with management and other disciplines
  • Experience working with product management, engineering and ops to help them buy into a potentially disruptive, but important, security update/change

 

CyberArk is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

 

CyberArk may, if required by applicable law, implement a mandatory vaccination policy as a condition of employment, subject to reasonable accommodation where required by law.

#LI-JH1

Apply now

Apply for Job