AI Penetration Tester
Company Lenovo
Location Raleigh, NC
Preferred GIAC Certifications GIAC Cloud Penetration Tester (GCPN), GIAC Certified Incident Handler (GCIH), GIAC Penetration Tester (GPEN)
Travel 0%
Salary Not provided
URL https://jobs.lenovo.com/en_US/careers/Jobdetail?jobId=60430&source=External+Career+Site
Contact Name Anonymous
Contact Email rmichel/at/lenovo.com
Expires 2024-12-12

Job Description

This position is for a penetration tester in the Security Center of Excellence for the Global PC and Smart Device Business Unit (PCSD). This is an exciting role that will give you the opportunity to work with Product teams around the globe to perform penetration test on PCSD’s many products. You will be working alongside the best security teams in the industry. This roll will be responsible to pen test PCSD Products sold around the world. This will include scoping and planning pen tests with the development teams and then leading execution of those pen tests. You’ll report findings, produce reports and work with the development and security teams to resolve the issues you and your team members find. You’ll stay up to date with the industry’s latest techniques and tools. This role will be testing a variety of products and will be well versed in cloud, client, IoT and hardware penetration testing.

You will be researching new penetration tools and techniques, including how AI can help improve efficiencies as well as developing and implementing best new techniques to test AI products. You’ll work with development teams to coordinate penetration tests and ensure that products are tested within an appropriate time frame. You will be communicating the priority and risk to development teams. You will have excellent organizational and communication skills ensuring that development teams are well informed of the penetration testing results.


In Summary you will:

Perform penetration tests on PCSD’s Cloud, Client and AI products.
Work with development and security teams to find and explain security issues, suggest mitigations, and ensure they are mitigated.
Stay up to date on the latest testing tools and techniques ensure both yourself and the teams are using the most effective methods.

Position Requirements

Basic Qualifications:

Bachelor’s degree in a relevant field or equivalent relevant experience
3+ years of cybersecurity experience
2+ years of experience of penetration testing
Strong written and verbal communications and interpersonal skills
Ability to work independently as well as function as an integral part of a team, take initiative and ownership in a fast-paced environment
Ability to successfully work across regions and functions to solve problems and get things done

Preferred Qualifications:

Knowledge of Artificial Intelligence security testing tools and techniques.
Experience with penetration testing and diagnostic tools such Burp Suite, Kali Linux, fuzzing tools, code analyst tools, DAST tools, Metasploit, etc.
Knowledge of Agile processes
Experience working in a development environment.
SANS certifications such as GIAC Cloud Penetration Tester (GCPN), GIAC Certified Forensic Examiner (GCFE), GIAC Certified Incident Handler (GCIH), GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), GIAC Reverse Engineering Malware (GREM), and GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
EC-Council certifications such as Certified Ethical Hacker (ANSI or Practical)
Offensive Security certifications such as Offensive Security Certified Professional (OSCP), Offensive Security Experienced Penetration Tester (OSEP), Offensive Security Web Expert (OSWE), Offensive Security Exploit Developer (OSED), and Offensive Security Exploitation Expert (OSEE
Industry security certifications such as CISSP, Security+, etc.