Associate Security Consultant (NetSPI University)

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance. We help secure the most trusted brands on Earth with our Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS) solutions. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever after.

NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers.

*This position will be onsite in Minneapolis starting in January 2025. We are open to considering candidates that require a remote working environment but will be prioritizing applicants that can be onsite.

Responsibilities during the training program:

• Complete the learning objectives of the web application penetration testing training curriculum
• Demonstrate the ability to articulate, document, and exploit common web application vulnerabilities
• Become proficient in the execution of NetSPI s testing tools & processes
• Improve oral and written skills as it pertains to technical web application testing
• Receive support and oversight from senior colleagues to demonstrate readiness for solo execution

Responsibilities following the training program:

• Execute web application penetration tests
• Create and deliver penetration test reports to clients
• Collaborate with clients to create remediation strategies that will help improve their security posture

Other important tasks you ll partake in post training:

• Research and develop innovative techniques, tools, and methodologies for penetration testing services
• Help define and document internal, technical, and service processes and procedures
• Contribute to the community through the development of tools, presentations, white papers, and blogs

Minimum Qualifications:

• Bachelors or Master's degree in IT, Computer Science, Engineering, Math or similar disciplines (must be completed within 6 months of start date)
• Previous internships in IT or IT Security
• Familiarity with offensive toolkits used for network and application penetration testing
• Familiarity with common web application vulnerabilities and their remediations
• Knowledge of common IT systems (e.g., Windows, Linux) and basic administration skills
• Highly self-motivated and takes initiative to enhance or improve processes, procedures, and solutions
• Curious minded with a hunger to learn
• Applicants must have native-level proficiency in English communication and writing skills
• Ability to creatively solve problems and effectively communicate the problem solving process

Preferred Qualifications:

• Programming experience in one or more of the following languages: Ruby, Python, Perl, C, C++, Java, and C#
• Previous experience in IT, Cybersecurity, or pentesting fields
• Knowledge of network protocols and design