Associate Penetration Tester at Paylocity

| Northwest Suburbs
!Sorry, this job was removed at 6:16 p.m. (CST) on Wednesday, November 27, 2019
Apply now

The Associate Penetration Tester is responsible for verifying that our cloud based Software-as-a-Service (SaaS) web applications are secure. The role involves performing threat modeling, security assessments, and ethical hacking of our web applications. In addition, the Associate Penetration Tester will be producing reports that document the risk of vulnerabilities identified by security assessments and penetration tests for each product team and our auditors. 

Are you the leader we are looking for?

Who you are:

  • Passionate about information security and privacy
  • An evangelist regarding the importance of information security 
  • Well versed in security issues affecting financial service organizations as well as widespread data center operations, such as cloud and mobile technology solutions
  • Committed to an ongoing partnership with other high profile groups within the organization (e.g. software development) to insure information security objectives are being understood and embraced
  • Established presence within information security communities
  • Ability to anticipate problems and recommend decisive action
  • Excellent communication skills (both written and oral)
  • Ability to work collaboratively across the organization
  • Self-driven, creative, and resourceful

How we work:

  • Casual, collaborative environment which embraces and operates under our shared principles  
  • Complete transparency with open, honest discussions about our progress 
  • Close working relationships across all areas of the organization
  • Focus on outcomes and learning

What we offer:

  • A strong commitment to Information Security both financially and organizationally  
  • An existing talented and passionate Information Security team 
  • The chance to meaningfully contribute to a vast market opportunity
  • A collaborative environment where our security team is empowered to help steer the direction of the team
  • A place to contribute your security knowledge company-wide through forum panels with our product development team  
  • Annual training allowance to learn new things and bring it back to the team.
  • Flexible remote work schedule
  • Employee Stock Purchase Program (ESPP) which enables employees to share in the long-term growth and future success of the company

What you bring:

  • Preferred education equivalent to a Bachelor’s degree in Information Security or related Computer Science 
  • Be passionate about information security and privacy
  • Ability to evangelize regarding the importance of information security
  • Possess excellent communication skills (both written and oral)
  • Be self-driven, creative, and resourceful
  • 0 to 2 years of experience in one of the following - software development, security testing, vulnerability assessment
  • Be familiar with TCP/IP and networking concepts
  • Knowledge of the software development lifecycle and the ability to create and read code in a modern object-oriented programming language (such as ASP.net/C# or Python) and writing SQL scripts and web code (HTML/JavaScript/etc.)
  • Be willing to demonstrate coding proficiency in 6 months from hire
  • Have basic understanding of OWASP Top 10, Testing Guide, ASVS and other software security best practices
  • Knowledge of penetration testing against a wide variety of application layer platforms, including web, mobile, thick client, and Reverse Engineering, above and beyond running automated tools
  • Basic understanding of REST API, Security Testing, DAST and SAST tools
  • Ability to perform both manual and automated code reviews
  • General understanding of some of the following security tools – Burp Suite, ZAP, SQLMap, SQLNinja, Metasploit, Nessus, Wireshark, nmap, tcpdump, OSINT, Recon-ng, mimikatz, responder, maltego, aircrack-ng, Cain and Abel, JTR, hashcat, hydra, SET, Nikto, dirbuster, golismero, theHarvester, BeEf, Sparta, wfuzz
  • Candidates with personal projects and opensource contributions will be preferred
  • Solid understanding of object oriented programming concepts

During the last three months, you would have:

  • Evaluated security threats, assess the potential impact to the business, and implement strategies to detect and generate alerts on Security incidents
  • Performed threat modeling, ethical hacking (both automated and manual), and security assessments on our web and mobile applications. 
  • Worked collaboratively with IT and Software Development to continually improve our security posture.
  • Calculated risk and created reports that documented our current risk of vulnerabilities identified from penetration tests for a variety of product teams.
  • Handled escalations quickly and worked closely with our product teams to verify that any identified vulnerabilities are addressed.
Read Full Job Description
Apply now

Technology we use

  • Engineering
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • SqlLanguages
    • AccessDatabases
    • Microsoft SQL ServerDatabases
    • OracleDatabases

Location

We just moved into a larger, more modern space across from the bustling Woodfield Mall area in Schaumburg, accessible to plenty of bars & restaurants.

What are Paylocity Perks + Benefits

Paylocity Benefits Overview

Our commitment to hiring the best and brightest employees with a “talent anywhere” strategy means that no matter where you’re located around the country, you can be a part of our growing tech department

• Enjoy an attitude of trust to work remotely, manage your own schedule and be productive
• Work in small, cross-functional product-oriented teams
• Showcase development progress in two-week sprints with strong executive involvement
• Embrace the freedom to innovate, voice opinions and share new ideas

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Highly diverse management team
Unconscious bias training
Someone's primary function is managing the company's diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Onsite Gym
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
We have a talent anywhere culture, where employees can work anywhere in the US and/or work from one of three US offices located in Illinois, Florida, and Idaho
Family Medical Leave
Adoption Assistance
Company sponsored family events
Acme co. sponsors family oriented events Annually.
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Game Room
Stocked Kitchen
Some Meals Provided
Happy Hours
Parking
Recreational Clubs
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Acme Co. hosts lunch and learn meetings on occasion.
Cross functional training encouraged
Promote from within
Mentorship program
Our mentorship program includes 1-to-1 program, Cross-department program, Leadership mentoring.
Online course subscriptions available
More Jobs at Paylocity60 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR
Internships
Marketing
Operations
Product
Project Mgmt
Sales
Data + Analytics
new
Northwest Suburbs
Data + Analytics
new
Northwest Suburbs
Operations
new
Northwest Suburbs
Developer
new
Northwest Suburbs
Developer
new
Northwest Suburbs
Product
new
Northwest Suburbs
Product
new
Northwest Suburbs
Product
new
Northwest Suburbs
Operations
new
Northwest Suburbs
Internships
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Operations
new
Northwest Suburbs
HR
new
Northwest Suburbs
Developer
new
Northwest Suburbs
Developer
new
Northwest Suburbs
Developer
new
Northwest Suburbs
Developer
new
Northwest Suburbs
Developer
new
Northwest Suburbs
HR
new
Northwest Suburbs
HR
new
Northwest Suburbs
Sales
new
Northwest Suburbs
Internships
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Product
new
Northwest Suburbs
Project Mgmt
new
Northwest Suburbs
Operations
new
Northwest Suburbs
HR
new
Northwest Suburbs
Operations
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Data + Analytics
new
Northwest Suburbs
Data + Analytics
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Operations
new
Northwest Suburbs
Operations
new
Northwest Suburbs
Product
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Internships
new
Northwest Suburbs
Project Mgmt
new
Northwest Suburbs
Sales
new
Chicago
Project Mgmt
new
Northwest Suburbs
Project Mgmt
new
Northwest Suburbs
Operations
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Finance
new
Northwest Suburbs
Data + Analytics
new
Northwest Suburbs
Marketing
new
Northwest Suburbs
Design + UX
new
Northwest Suburbs
Data + Analytics
new
Northwest Suburbs
Developer
new
Northwest Suburbs
Internships
new
Northwest Suburbs
Design + UX
new
Northwest Suburbs
Apply now
Save jobView Paylocity's full profileSee more Paylocity jobs