Join the Truvantis Team

Truvantis is a rapidly growing Cyber Security Consulting company. We offer a dynamic, fun environment where you will have the opportunity to work with great clients and apply leading-edge security technologies to real businesses.

Job Description

We are seeking a member of the Truvantis consulting staff, to provide security and compliance expertise to help our customers protect their data and environments. This trusted advisor to our customers will help them understand their environments, deliver quality and practical guidance on identifying and addressing potential risks. The initial engagement will be a focused effort on ISO27001 for an established customer. Contact us by applying HERE.

Key Responsibilities

Interface with customers to assess, develop and improve their information security programs in cooperation with other Truvantis team members and through any of the following tasks:

  • Document policies, processes and controls
  • Support audit preparation through review of requirements, evidence collection, and engagement with third-party auditors
  • Provide recommendations and remediation plans
  • Lead conversations with customers to support their evaluation of risk and severity of issues

Required Skills & Qualifications

  • Five (5) or more years direct experience in information security, IT security or related field
  • Minimum of five (5) years of verifiable ISO27001 experience in the past seven (7) years
  • Experience writing policies and procedures in support of compliance frameworks
  • Excellent verbal and written communication skills
  • General knowledge of all security and ISO27001 domains
  • Critical skills and characteristics: Self-starter, strong team collaboration, ability to maintain a trusted role and interface with customers, leadership, sense of accountability, independent decision making ability and overall project coordination skills, relationship building, analytical problem solving and risk identification/mitigation

Desired Skills

  • Audit, compliance and validation experience
  • Experience leading internal/external audits or assessments
  • Experience with security frameworks or compliance standards, including PCI-DSS, HIPAA, CIS Controls, NIST, SOC2

Certifications

  • CISA, CISM, PCI-QSA, CISSP, CIPP or other information security, audit or related certifications are highly desirable

Education

  • BS or MS degree in Computer Science, or a related field; or equivalent experience

Eligibility

  • Must pass a criminal background check
  • Must hold a valid driver’s license
  • Must have reliable transportation
  • Must be authorized to work in the United States

We do not sponsor or transfer visas
No agencies please

Application and Network Penetration Tester | San Jose, CA

Truvantis is a leading information security consulting firm protecting data and networks for brand name clients. We are looking for top talent to expand our existing operation in the Bay Area. If you like working in a fast-paced environment, with diverse work and exciting challenges, Truvantis is for you. We help our customers’ businesses grow and be safe, and we do far more than check off boxes on a security checklist. We work to understand our customers’ network, applications and operations, analyze and test them at a deep level and identify potential risk areas so we can give them great advice and recommendations and help them make their systems more secure. If you like sitting in your cube and working through a list of tickets – this is not the job for you. If you want to master current security issues to actually make a difference – contact us by applying HERE.

Key Responsibilities

  • Perform application and network penetration tests
  • Participate in Security Assessments of networks, systems and applications
  • Deep Network and Application Vulnerability Assessment. Guide security defect resolution by identifying security defects, assisting customers in reproducing defects, recommending remediation and verifying that defects are fixed
  • Build and enhance new security tools, applications and infrastructure
  • Work on security-related problems that require consideration of a wide variety of factors and use initiative and judgment to remediate
  • Lead conversations with customers to support their evaluation of risk and severity of issues
  • Engage with the security community
  • Create high quality reports
  • Some travel may be required

Required Skills & Tools

  • 3 – 8 years’ experience in penetration testing
  • Vulnerability and exploit detection and threat management experience
  • Vulnerability analysis and application reversing skills
  • Expert knowledge of Windows & Linux, TCP/IP, and Web services
  • Understanding of cryptography and ciphers
  • Experience with various security tools and products (Metaspolit, Nmap, Qualys, mimikatz, Nessus, NeXpose, Kali Linux, BurpSuite, OWASP ZAP, WireShark, Tcpdump, etc.)
  • Experience with Python required, experience with lower level languages is desirable
  • Excellent verbal and written communication skills
  • Ability to maintain a trusted role

Certifications

  • CEH, OSCP, GIAC (GPEN) or other information security certifications are highly desirable

Education

  • BS or MS degree in Computer Science, or a related field or equivalent experience

Eligibility

  • Must pass a criminal background check
  • Must hold a valid driver’s license
  • Must have reliable transportation
  • Must be authorized to work in the United States

Position is based in San Jose, CA office
We do not sponsor or transfer visas
No agencies please

Start typing and press Enter to search