Associate Offensive Cybersecurity Engineer

Summary

Join Abacus as an Associate Offensive Cybersecurity Engineer and perform penetration testing on web applications, APIs, and mobile applications. You will create detailed cybersecurity reports, stay updated on the latest testing techniques, present findings to clients, train team members, and develop automation scripts. This role requires strong communication and technical skills, along with a passion for cybersecurity. We offer a competitive compensation and benefits package, including medical, dental, vision, disability, life insurance, 401k, and PTO, plus opportunities for professional development. The ideal candidate will possess a collaborative attitude and a commitment to continuous learning and innovation.

Requirements

Bachelor’s Degree in one of the following areas of concentration: Computer Science, Software Development, Information Technology, Cybersecurity

Responsibilities

• Perform penetration testing of entry level to intermediate web applications, APIs, and Mobile Applications utilizing black box and white box techniques aligned to OWASP Web Security Top 10 and PTES
• Either currently or in the future, perform penetration testing of Generative Artificial Intelligence & Large Language Models
• Creating and conducting technical reviews of various highly detailed cybersecurity testing reports
• Researching and staying up to date with the latest penetration testing techniques, tools and methodologies
• Assisting with the development of scripts, tools, and processes to help automate various pentesting processes
• Presenting various penetration testing reports to customers and discuss nuanced technical recommendations, with the expectation of leading customer presentations within 3 months
• Discuss with, collaborate with, and train teammates from the Cybersecurity Red Team around various tools and techniques associated with application penetration testing

Preferred Qualifications

• 1+ Years of professional technology experience (I.e., Sysadmin, Networking, Cloud infrastructure, Software Development, etc.)
• 1+ Years of Capture the Flag (CTF), and or independent projects experience
• 1+ Years experience scripting for automation, data science, or cybersecurity purposes
• 1+ Years of Penetration Testing Experience
• One or more of the following certifications: Practical Mobile Pentest Associate (PMPA)
• Practical Web Pentest Associate (PWPA)
• Practical Web Pentest Professional (PWPP)
• Offensive Security Web Assessor (OSWA)
• Offensive Security Web Expert (OSWE)
• BurpSuite Certified Practitioner (BSCP)
• API Security Certified Professional (ASCP)
• Certified Web Exploitation Expert (CWEE)
• Certified Bug Bounty Hunter (CBBH)

Benefits

• Competitive compensation
• Robust benefits package: medical, dental, vision, disability, life insurance, 401k, and PTO
• Opportunities to further technical education through online courses and certification reimbursement program
• Positive, friendly, supportive office environment
• Workplace perks such as healthy snacks, wellness program, and fun events