Berkadia Commercial Mortgage, LLC seeks a Senior Red Team Engineer III to manage and conduct internal penetration tests on mission-critical internal web applications. This role involves network scanning, foot printing, fingerprinting, process enumeration, exploitation, escalation, and exfiltration. The engineer will document findings with evidence and replication steps, publish results to a Vulnerability Management platform, and track remediation progress. Responsibilities include building reports on findings, remediation data, MTTR compliance, application testing history, and YoY trends. The role also requires maintaining the penetration testing environment, including deploying and managing Kali Linux on a secure jump-box, and updating penetration testing documentation. Additionally, the engineer will provide quarterly updates to the Cyber Risk Management team on NIST framework compliance, lead efforts with development teams on HTTP security headers, manage WAF policies, and mentor junior engineers on vulnerability remediations.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Senior