W-2 Jobs Portal

  • W-2 Open Positions Need to be Filled Immediately. Consultant must be on our company payroll, Corp-to-Corp (C2C) is not allowed.
Candidates encouraged to apply directly using this portal. We do not accept resumes from other company/ third-party recruiters

Job Overview

  • Job ID:

    J36993

  • Specialized Area:

    IOS

  • Job Title:

    Ethical Hacking Analyst

  • Location:

    Chicago, IL,IL

  • Duration:

    8 Months

  • Domain Exposure:

    Healthcare, Insurance, Education, Real Estate

  • Work Authorization:

    US Citizen, Green Card, OPT-EAD, CPT, H-1B,
    H4-EAD, L2-EAD, GC-EAD

  • Client:

    To Be Discussed Later

  • Employment Type:

    W-2 (Consultant must be on our company payroll. C2C is not allowed)




Job Description

SKILLS REQUIRED:

- Experience conducting vulnerability assessments, code reviews and penetration tests against web/mobile application technologies, services, platforms and languages to find flaws and exploits (e.g. SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Authentication/Authorization, Privilege Escalation, Business Logic Bypass, OWASP Top 10, SANS Top 25 etc) 


- Knowledge of network and Web related protocols/technologies 


- Ability to demonstrate manual web application testing experience 


- Experience with web application vulnerability scanning tools (e.g. IBM AppScan, HP Webinspect, Accuntix, NTO Spider, Burpsuite Pro etc.) 


- Experience with vulnerability assessment tools and penetration testing techniques (e.g. web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI etc.) 


- Experience of penetration testing on mobile platforms such as iOS, Android, Windows and RIM. 


- Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C. 


- Expert-level experience and very details technical knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services 


- Demonstrated ability to learn and apply critical thinking to a variety of situations 


- One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience) 


- Strong scripting skills (e.g. Python, Perl, Shell script, JavaScript 


- Experience as a developer 


- Mobile programming abilities such as Xcode, Objective-C 


- Knowledge of a Structured Query Language 


- SME Level knowledge in the use of Application Security Scan Tools (ie BURP, AppScan, WebInspect, SOAP UI or etc) 


- Certifications (OSCP, OSCE a plus) 




DESIRED: 


- BS/MS in Computer Science (or relevant work experience in a large scale IT environment) 


Apply Now
Equal Opportunity Employer

QUANTUM TECHNOLOGIES LLC is an equal opportunity employer inclusive of female, minority, disability and veterans, (M/F/D/V). Hiring, promotion, transfer, compensation, benefits, discipline, termination and all other employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, age, disability, national origin, citizenship/immigration status, veteran status or any other protected status. QUANTUM TECHNOLOGIES LLC will not make any posting or employment decision that does not comply with applicable laws relating to labor and employment, equal opportunity, employment eligibility requirements or related matters. Nor will QUANTUM TECHNOLOGIES LLC require in a posting or otherwise U.S. citizenship or lawful permanent residency in the U.S. as a condition of employment except as necessary to comply with law, regulation, executive order, or federal, state, or local government contract