Need help? Call Customer Support | 800-301-3894

Assessment Lead (Senior Security Engineer) - Chicago, IL

Network security company Nexum, Inc. seeks a seasoned security assessment / penetration testing professional to join the team in Chicago. Nexum is a thriving company with an engineering-centric culture. Applicants must have solid experience reviewing systems for security, recommending security improvements, and performing remote and local testing of systems for security. Candidates will join a nimble security assessment team that emphasizes results, and provides mentorship towards autonomy while giving each team member the opportunities and support to advance in a high-impact position within our fast-moving, independent technology company.

Job Overview/Responsibilities

  • Meet with clients to explain offerings and gather requirements
  • Formal security assessment of systems, networks, and applications
  • Security review of system and device configurations
  • On-site and remote penetration testing
  • Discover and exploit vulnerabilities in systems, applications, and protocols
  • Document, rate, and explain findings in the context of client systems and requirements
  • Communicate client-focused recommendations for remediating documented findings
  • Candidates will be considered for position and responsibility commensurate with experience.

Skills and Qualifications

  • Experience participating in all aspects of security assessment, including pre-sales and post-delivery discussions with clients
  • Experience validating the output of multiple tools and techniques, and synthesizing those results into actionable findings
  • Ability to communicate well in front of clients while engaged in assessment work; ability to understand complex requirements, and explain complex findings
  • Familiarity with both black-box penetration testing and white-box assessment techniques
  • Experience assessing the security of common operating systems, including Windows and Linux

Requirements

  • 3-5 years experience performing network security assessments and/or manually-validated penetration tests
  • Proficiency with common office software packages including MS Word and Excel
  • Excellent reading, writing, and verbal communication skills
  • Proficiency with common security testing tools
  • Detailed understanding of the functional aspects of key infrastructure protocols
  • Excellent reading comprehension
  • B.S. Degree or equivalent work experience

Preferred Skills

  • Experience advising clients on the IT aspects of public and private regulatory regimes and standards (especially HIPAA, PCI, and FISMA)
  • Experience with NIST security standards and control frameworks
  • Experience designing and securing networked environments including servers/systems, applications, and other devices
  • Proficiency with networking and testing tools including Nexpose, Metasploit, Burp Suite, nmap, Nessus, etc.

Company Benefits

  • Quarterly bonuses (company and personal performance-based)
  • Health insurance
  • Dental & vision insurance
  • Flexible working schedule depending on assignment
  • Casual work environment, when not at client sites