What will you be doing?
Barclays Services Corp seeks Penetration Tester in Whippany, New Jersey (multiple positions available):
- Scope and execute penetration tests against a variety of technologies including web application, mobile and infrastructure.
- Work collaboratively with a variety of internal stakeholders to deliver high quality penetration tests.
- Provide reports which highlight and clearly articulate vulnerabilities and weaknesses to clients in terms they understand.
- Contribute both on an individual assessment basis as well as a global strategic basis to raise the security posture across the organization.
- Work within virtual teams of security and technical specialists to ensure quality delivery of leading security assurance services to our internal clients.
- Innovate towards the goal of establishing novel security assurance services and the enhancement of existing services.
- Ensure that all activities and duties are carried out in full compliance with regulatory requirements, enterprise wide risk management framework and internal Barclay’s policies and policy
- standards.
- May telecommute.
Purpose of the role
To identify potential vulnerabilities within the banks IT systems using penetration testing tools and techniques to ensure security of computer systems, applications, servers, and networks.
Accountabilities
- Development and execution of assessments, audits, and threat models to identify vulnerabilities within the banks systems, applications and servers using penetration tools and techniques, and communicate key findings and recommendations to stakeholders.
- Collaboration with stakeholders and IT teams to identify emerging cyber-attack techniques, tools and technologies and to support the development of penetration testing methodologies.
- Development and maintenance of comprehensive documents and reports for senior stakeholders on penetration test findings, and remediation guidance.
- Collaboration with stakeholders to understand their security requirements and controls in business processes, application/services, to enhance overall security posture and assurance.
- Identification of emerging vulnerabilities, exploit codes and cyber-attacks to develop testing methodologies and assurance activities.
Assistant Vice President Expectations
- Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues.
- Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda.
- Take ownership for managing risk and strengthening controls in relation to the work done.
- Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function.
- Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy.
- Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc).to solve problems creatively and effectively.
- Communicate complex information. 'Complex' information could include sensitive information or information that is difficult to communicate because of its content or its audience.
- Influence or convince stakeholders to achieve outcomes.
All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.