KPMG US is hiring: Senior Specialist, MAST Application Penetration Tester in Hou

1 week ago Be among the first 25 applicants Overview KPMG Advisory practice is currently our fastest growing practice. We are seeing tremendous client demand, and looking forward we do not anticipate that slowing down. In this environment, our professionals must be adaptable and thrive in a collaborative, team-driven culture. At KPMG, our people are our number one priority. With opportunities for learning and career development, a world-class training facility and leading market tools, we facilitate growth both professionally and personally. If you are looking for a firm with a strong team connection where you can be your whole self, have an impact, advance your skills, deepen your experiences, and expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Senior Specialist, MAST Application Penetration Tester to join our Managed Services practice. Responsibilities Conduct manual application penetration testing against APIs (REST/SOAP), Web Applications, Mobile applications, and thick client applications Perform objectives based on abstract penetration testing engagements Execute threat modeling, evaluate application business logic, and perform application architecture reviews Demonstrate application testing experience in real time via demos to both internal and external audiences Function independently in penetration testing engagements, with minimal oversight and guidance Act with integrity, professionalism, and personal responsibility to uphold KPMG\'s respectful and courteous work environment Qualifications Minimum three years of recent experience in application penetration testing of APIs, web applications, or mobile applications Bachelor\'s degree from an accredited college/university or equivalent industry experience Ability to communicate reporting results with technical and non-technical audiences and lead remediation conversations Experience with Burp Suite Pro, and other app testing tools such as Netsparker and Checkmarx One or more major ethical hacking certifications not required but preferred; GWAPT, CREST, OSWE, or OSWA Ability to travel as required Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future KPMG complies with all local/state regulations regarding displaying salary ranges. If required, ranges are provided for the location listed. Our Total Rewards package includes medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a range of well-being benefits. Benefits are based on eligibility. Standard work hours and Paid Time Off are provided, with firmwide holidays observed annually. KPMG is an equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants will be considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable laws. KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 unless mandated by law. Roles may require vaccination or testing to access client sites where required by clients or law. #J-18808-Ljbffr