Application Penetration Tester

DTCCDallas, TX
73d
Match Resume

About The Position

Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve. The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance.

Requirements

  • Minimum of 4 years of related experience.
  • Bachelor's degree preferred or equivalent experience.
  • Hands-on experience in manual application penetration testing for web apps and APIs.
  • Strong proficiency with penetration testing tools (Burp Suite, OWASP ZAP, etc.).
  • Knowledge of secure coding practices, dynamic analysis, and vulnerability identification.
  • Ability to communicate technical findings and remediation steps clearly to developers.
  • Understanding of Secure SDLC and regulatory compliance requirements.
  • Research-oriented mindset to adopt emerging security trends.
  • Strong collaboration and communication skills.

Nice To Haves

  • At least one certification would be preferred - Penetration testing professional, Licensed Penetration Tester, Practical Web Pentest Associate.

Responsibilities

  • Perform Ethical Application Penetration Testing (EAPT) on web applications and APIs in alignment with DTCC processes and control standards.
  • Provide assistance to developers by detailing reported vulnerabilities and recommending remediation steps.
  • Ensure excellent coordination across various teams within DTCC to support security initiatives.
  • Conduct application security assessments, risk analysis, vulnerability testing, and security reviews across DTCC's businesses.
  • Monitor and mitigate risk, escalating issues as required.
  • Contribute to and maintain secure coding best practices and related guidelines.
  • Perform industry research on emerging application security technologies and trends to improve detection and reporting of security risks.
  • Mitigate risk by following established procedures, monitoring controls, spotting key errors, and demonstrating strong ethical behavior.
  • Collaborate with developers and AppSec teams to ensure adherence to Secure System Development Lifecycle (SDLC).
  • Contribute to testing efforts across a large portfolio (~300 applications annually) as part of the AppSec Defensive team.

Benefits

  • Competitive compensation, including base pay and annual incentive.
  • Comprehensive health and life insurance and well-being benefits, based on location.
  • Pension / Retirement benefits.
  • Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
  • DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Industry

Securities, Commodity Contracts, and Other Financial Investments and Related Activities

Education Level

Bachelor's degree

Number of Employees

1,001-5,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service