KPMG US
Join to apply for the
Specialist, Security Tester
role at KPMG US.
Responsibilities
Perform automated application / network penetration tests on web applications, internal applications, APIs, internal and external networks, and mobile applications to discover and exploit vulnerabilities.
Execute dynamic application security tests on web applications and static application security tests on source code, including identifying false positives and reprioritizing findings severity.
Conduct vulnerability analysis against internal and external networks leveraging automation techniques and solutions.
Elevate to executing independently in either the application or network domain within one year of service.
Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment.
Qualifications
Minimum one year of recent experience performing application and/or network penetration tests using tools such as AppScan, NetsSparker, Acunetix, BurpSuite, OWASP ZAP, Tenable Nessus, Qualys, Kali Linux, Metasploit, or equivalent.
Experience working with technical and non‑technical audiences in reporting results and leading remediation conversations.
Bachelor's degree from an accredited college or university is required.
Experience in one or more of the following is a plus: mobile application testing, manual code analysis, and/or static analysis using Veracode, Fortify, SonarQube, Checkmarx, Contrast or equivalent.
Experience in one or more of the following is a plus: Python, JavaScript, PHP, C/C++, SQL, and more.
One or more ethical hacking certifications preferred (e.g., CEH, GWAPT, GPEN, OSCP, OSWA).
Ability to travel as necessary.
Applicants must be authorized to work in the U.S. without the need for employment‑based visa sponsorship now or in the future; KPMG will not sponsor U.S. work visa status for this opportunity.
KPMG is an equal‑opportunity employer. KPMG complies with all applicable federal, state, and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state, or local laws.
#J-18808-Ljbffr
Specialist, Security Tester
role at KPMG US.
Responsibilities
Perform automated application / network penetration tests on web applications, internal applications, APIs, internal and external networks, and mobile applications to discover and exploit vulnerabilities.
Execute dynamic application security tests on web applications and static application security tests on source code, including identifying false positives and reprioritizing findings severity.
Conduct vulnerability analysis against internal and external networks leveraging automation techniques and solutions.
Elevate to executing independently in either the application or network domain within one year of service.
Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment.
Qualifications
Minimum one year of recent experience performing application and/or network penetration tests using tools such as AppScan, NetsSparker, Acunetix, BurpSuite, OWASP ZAP, Tenable Nessus, Qualys, Kali Linux, Metasploit, or equivalent.
Experience working with technical and non‑technical audiences in reporting results and leading remediation conversations.
Bachelor's degree from an accredited college or university is required.
Experience in one or more of the following is a plus: mobile application testing, manual code analysis, and/or static analysis using Veracode, Fortify, SonarQube, Checkmarx, Contrast or equivalent.
Experience in one or more of the following is a plus: Python, JavaScript, PHP, C/C++, SQL, and more.
One or more ethical hacking certifications preferred (e.g., CEH, GWAPT, GPEN, OSCP, OSWA).
Ability to travel as necessary.
Applicants must be authorized to work in the U.S. without the need for employment‑based visa sponsorship now or in the future; KPMG will not sponsor U.S. work visa status for this opportunity.
KPMG is an equal‑opportunity employer. KPMG complies with all applicable federal, state, and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state, or local laws.
#J-18808-Ljbffr