About Specialized Security Services, Inc. We are a women-owned, global cyber security firm with headquarters in both Dallas, TX and Europe. Our Co-Founders Mitchelle and Scott Schanbaum opened S3 in 1999 and are proud to be a privately held, family-owned business that has never accepted any venture capital funding or corporate sponsorships. For over two decades, our expert team has successfully assisted organizations with the implementation and oversight of their information security, privacy and regulatory compliance programs. Our reputation is our own, built upon our steadfast commitment over the years to do the right thing and go above and beyond for our clients. We hold our company and our employees to the highest standards because this is core to our character and will be our legacy. We pride ourselves on our ability to think outside-the-box, stay nimble and go above and beyond for our clients every day.


Position Summary

The Associate Penetration Tester role offers an exciting opportunity to work on a range of high-profile client engagements while continuing to develop their skills and broaden their impact on the security community as a whole. They will work with team members to lead vulnerability management engagements and assist in penetration, assessing the security and compliance of various types of client applications and supporting infrastructure against regulatory and industry requirements and standards, as well as security best practice frameworks. The ideal candidate is a highly technical individual with broad and deep technical skills, meeting the objectives of their engagements, collaborating with clients, and providing subject matter expertise across one or more technical domains. The Associate Penetration Tester is a trusted advisor to clients, and through objective security assessments and results reporting, supports the client in making well-informed, risk-based decisions to improve overall security posture.


This successful candidate should reside in the DFW area.


Responsibilities

• Work with customer on vulnerability management engagements ranging from vulnerability scanning to remediation consulting

• Assist with network, web application and other types of penetration testing, code reviews, social engineering, red team engagements, and physical security assessments.

• Conduct security assessments on a wide variety of technologies and implementations.

• Being part of a global team of penetration testers, sharing knowledge and methodologies.

• Perform Vulnerability Assessments, Penetration Test, Ethical Hacking, Firewall Assessments, Social Engineering engagements.

• Manage priorities and tasks to achieve utilization targets.

• Advise clients on technical security or compliance activities.

• Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement.

• Participate in the development and implementation of the enterprise security architecture and supporting security standards to ensure compliance with corporate policies, and relevant legislative and regulatory requirements.

• Either handle or escalate client and project-related issues in a timely manner.

• Collaborates with the service delivery team and quality assurance to drive customer satisfaction.

• Other duties, as assigned.


Experience

• 7+ years in a hands-on technical role.

• 3+ years of professional experience in an information security.

• Should be versed in wide range of information security subjects, with an emphasis on vulnerability assessment and management.

• Problem solving skills and the ability to work under pressure in a fast-paced environment.

• Experience with security hardening techniques and policy development, particularly regarding secure software development methodologies and process

 In depth knowledge of Windows/Linux/UNIX operating systems

• Demonstrates advanced knowledge of the principles, best practices architecture and design approaches to applicable capabilities, services, and standard controls.

• Experience with one or more IT security compliance frameworks (PCI, NIST, ISO, CIS)

• Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.

• Exposure or familiarity with penetration testing tools such as Metasploit, Burp Suite, Nmap

• Ability to operate with professionalism both internally and with clients.

• Vulnerability Management/Assessment tools


Education

• A university degree in Computer Science, Engineering, or related work experience.

• IT and Security certifications such as Network+ and Security+

• Vendor Information Security tools certifications are helpful




This position has been filled. Would you like to see our other open positions?