Senior Application Security Consultant – PenTester IRC274191

Description
Work Model: Hybrid, 3 days weekly onsite in Palermo, Buenos Aires

Requirements
POSITION SUMMARY:

The Senior Consultant works closely with Project Managers, Delivery Directors, and other Delivery team members to lead engagements, assessing the security of various types of client applications and supporting infrastructure against security best practices. The Senior Consultant is a technical leader with broad and deep technical skills, meeting the objectives of their engagements, collaborating with clients, mentoring teammates, and providing subject matter expertise across one or more technical domains. The Senior Consultant is a trusted advisor to clients, and through objective testing and results reporting, supports the client in making well-informed, risk-based decisions to improve overall security posture.

WORK ENVIRONMENT/TRAVEL REQUIRED:

Standard office environment

Up to 10% travel

SKILLS:

Essential:

Excellent consulting skills including:

Time management, performing adjacent tasks while ensuring on-time delivery, escalating issues as needed

Verbal communication, leading client calls for project kickoffs and debrief

Written communication

Report writing, for both executive audiences and technical staff

Expert proficiency in Web Application Penetration Testing

Excellent overall technical skills, with strong expertise in at least one of the following:

Mobile Application Penetration Testing

Thick Application Penetration Testing

Hardware Penetration Testing

Secure Code Review

Container Penetration Testing

Cloud Penetration Testing

Network Active Directory Penetration Testing

AI Penetration Testing

EXPERIENCE:

Essential:

Application penetration testing and assessment tradecraft and methodologies (including browser-based, API)

Strong working knowledge of at least two programming or scripting languages

Strong understanding of security principles and industry best practices.

Minimum of 5 years' experience in a consulting/professional services role

Minimum of 5 years' experience in Application Security and/or Software Development

PREFERRED CERTIFICATIONS/SKILLS (not required):

AWAE, OSCP, OSCE, OSEE offensive security certifications

Significant development and engineering backgrounds

Cloud Service penetration testing tradecraft and methodologies across multiple service providers (e.g. AWS, GCP, etc.).

Mobile platform and application penetration testing tradecraft and methodologies across both iOS and Android.

Red/Purple Team tradecraft and methodologies.

Social engineering in all its forms.

AWS Certified Solutions Architect – Professional, AWS Certified Security, AWS Certified Advanced Networking, AWS Certified SysOps Administrator

Network, Database, System administration experience and certifications

EDUCATION:

High school diploma required

Job responsibilities

ESSENTIAL RESPONSIBILITIES:

Working independently and collaboratively with a team to both lead and support

Perform penetration testing on applications with complex technology stacks from both a:

Blackbox perspective

Whitebox perspective

Dynamically flex your skills when assessing emerging or custom technologies.

Lead complex engagements to provide a technical consistency approach across multiple tests.

Contextualize vulnerabilities and assess realistic impact to a client accounting for mitigating and aggravating factors.

Manage priorities and tasks to achieve utilization targets.

Operate with professionalism both internally and with clients.

Ensure quality reports and services are delivered efficiently and on time.

Support sales and business growth by scoping out potential opportunities.

Maintains strong depth of knowledge in the practice area.

Collaborate with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables.

What we offer

Culture of caring.
At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you'll experience an inclusive culture of acceptance and belonging, where you'll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders.

Learning and development.
We are committed to your continuous learning and development. You'll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally.

Interesting & meaningful work.
GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you'll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what's possible and bring new solutions to market. In the process, you'll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today.

Balance and flexibility.
We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way

High-trust organization.
We are a high-trust organization where integrity is key. By joining GlobalLogic, you're placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do.

About GlobalLogic
GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world's largest and most forward-thinking companies. Since 2000, we've been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services.