at Early Warning Services in Chicago, Illinois, United States
Job Description
At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle, Paze, and so much more. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses.
Positions located in Scottsdale, San Francisco, Chicago, or New York follow a hybrid work model to allow for a more collaborative working environment.
Candidates responding to this posting must independently possess the eligibility to work in the United States, for any employer, at the date of hire. This position is ineligible for employment Visa sponsorship.
Overall Purpose
The Senior Manager, Offensive Security position provides offensive security leadership for the Early Warning Offensive Security program. This includes conducting application and network penetration testing on all Early Warning product offerings to assess the product and infrastructure security posture. The position requires a high level of knowledge in the disciplines of offensive security, bug bounty program management, phishing, and password audit campaigns. The position reports to the Director,Offensive Security, and will work closely with product managers, security researchers, technology partners and security architects.
Essential Functions
In depth knowledge of all aspects of offensive security.
Implement security penetration testing directives as defined by the Director, Offensive Security, and in line with written security standards, and industry best practices.
Responsible for the development, hiring and performance discussions management of the offensive security team.
Responsible for the escalation and communication of penetration testing and bug bounty findings.
Develop metrics to measure individual and team performance, as well as value provided to the organization.
Assist with internal security investigations and emerging threat activities.
Provides effective and positive leadership in developing highly engaged, high-performance teams that provide quality results.
Researches, evaluates, and stays current on emerging security tools, trends, policies, best practices, techniques, and technologies.
Communicate in an open and productive manner with all team members, leadership, and customers to collaboratively solve the needs of the business. Work with Security Architects and Engineers to gather information and conduct penetration tests.
Maintain demonstrable knowledge of current vulnerability exploitation techniques.
Interacts with customers, regulators, and auditors on a regular basis.
Support the company's commitment to risk management and protecting the integrity and confidentiality of systems and data.
The above job description is not intended to be an all-inclusive list of duties and standards of the position.
Minimum Qualifications
Education typically obtained through security certifications or completion of a Bachelor's degree in Computer Science, Engineering, Math or equivalent work experience.
Strong understanding of offensive and defensive security, including offensive evasion and defensive detection techniques.
Strong understanding of enterprise and cloud networking and application technology.
4 years of general security penetration testing experience.
8 or more years of general IT or information security experience including at least 3 years of leadership, supervisory or mentorshipexperience.
Demonstrated success or ability to retain highly engaged, high performing teams.
Experience managing or supervising penetration testing efforts of other team members
Working knowledge of communication network technologies.
Advanced working understanding of penetration test assessment procedures and penetration test tools such as Kali Linux, proxies, and other industry standard tools.
Expert knowledge of Open Web Application Security Project (OWASP) Top 10 Vulnerabilities and testing procedures.
Advanced working understanding of information gathering techniques and processes.
Advanced working understanding of web application technologies, programing languages, databases, Linux, Unix, Mac OSX, and Windows operating systems.
Effective interpersonal skills.
Experience in analyzing risk associated with security vulnerabilities required.
Strong security assessment writing skills.
Background and drug screen are required.
Preferred Qualifications
6 or more years of security experience within the financial sector.
Hands-on practical Offensive Cybersecurity certifications (OSCP, OSWE, eJPT, Pentest+, eCPPT, eCPTX, eWPT, eWAPTX,... For full info follow application link.
Early Warning is an equal opportunity employer that takes affirmative action to employ, and advance in employment, qualified minorities, women, individuals with disabilities and covered veterans.
