Information Security Tester Information Security Tester …

in Milton, MA, United States
Permanent, Full time
Be the first to apply
in Milton, MA, United States
Permanent, Full time
Be the first to apply
Information Security Tester
Job Opportunity Information Security Application Tester Information Security Application Tester -2000441 Description

The Information Security Application Tester is responsible for detecting threats and vulnerabilities in target systems, networks, and applications by conducting systems, network and web vulnerability assessment / security testing. The Consultant, Information Security identifies the security flaws and weaknesses in the systems that can be exploited to cause business risk, and provides crucial insights into the most pressing issues, suggesting how to prioritize security resources.

  • Knowledge of common software vulnerabilities, such as those in the OWASP Top 10.

  • Experience with CVSS and how to apply
  • Acts as influencer of peers and management.
  • Collaborate with technical teams for security incident remediation and communication.

  • Conducts Penetration Testing (e.g., internal, external, wireless, physical, social, etc.); Post vulnerability assessment, work with various stakeholders to provide remediation to the identified risks and bring the same to closure.

  • Conducts proof of concepts, vendor comparisons and recommend solutions in line with business requirements

  • Conducts risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems.

  • Conducts security research on threats and remediation methods.
  • Conducts vulnerability assessment on the target IT Infrastructure, applications and related information assets.

  • Conducts walk-through of the assessment report to the stakeholders and help define remediation plan.

  • Creates process improvement by identifying inefficiencies and solutions for process improvements.

  • Develops and maintains a set of operational and forward looking security metrics

  • Follows a standard methodology to identify and/or detect threats to the IT infrastructure, applications and other information assets.

  • Interacts with partners as needed to explain work product, security techniques, methodology and results to ensure appropriate business value,

  • Oversees monitoring of security reports to identify issues and follow these issues to resolution,

  • Performs web application security assessments (e.g., exploiting web app vulnerabilities such as SQL injection, cross-site scripting, parameter manipulation, session hijacking, etc.,

  • Prepares system security reports by collecting, analyzing, and summarizing data and trends; presents reporting for management review.

  • Promotes cross-department collaboration and communication to ensure appropriate processes, procedures and tools are installed, monitored, and effectively operating and alerting,

  • Provides direction and act as an escalation point on projects and issues to other team members,

  • Provides technical security consulting support to address complex business and technology projects and requests.

  • Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.,

  • Works with various teams to follow a pre-assessment plan/ and assessment schedule for every assessment, conduct threat assessment, and deliver an assessment report.

  • Writes clear implementation guidelines for the implementation engineers.

Qualifications Requirements:
  • Must have a bachelors degreecomputer science, software dev, info sec, security engineering, etc.

  • Knowledge of common software vulnerabilities, such as those in the OWASP Top 10.

  • Experience with CVSS and how to apply
  • Acts as a subject matter expert (SME) while providing leadership, and guidance

  • Security certifications a plus
  • Experience with application vulnerability scanners such as WebInspect or code review tools such as Fortify a plus

  • Exposure to IT risk management a plus

At Santander, we value and respect differences in our workforce and strive to increase the diversity of our teams. We actively encourage everyone to apply.

Job : Information Security Primary Location : Massachusetts-Dorchester-2 Morrissey Boulevard - 06367 - Columbia Park Organization:Technology (5900) Schedule : Full-time Job Posting : Feb 5, 2020, 5:50:39 PM


Share Job Work in Dorchester

Check out where you could be working if you apply


    Discover internship opportunities that Santander has for bright, ambitious students like you.


    Here at Santander, we appreciate the importance of different voices and viewpoints.

  • Employee Perspectives and Testimonials | Careers at Santander

    What do our employees enjoy most about working for Santander? Read more employee testimonials about working at Santander here.

  • Santander's Charitable Contributions Program | Careers at Santander

    Our communities are stronger when we support each other. That's why we're committed to the Santander Bank, N.A. Charitable Contributions Program.

  • IT Locations

    Discover Santander’s two U.S. technology hubs.

  • Innovating Through IT

    Our information technology team plays an integral role in our success. Learn more about them today.

  • Meet Our Team

    Meet the innovators who make up our IT team.

  • Why Join Us?

    Here are the top 5 reasons to join our IT team.

Featured Jobs Your Jobs Saved Jobs

You currently have no jobs saved.

Recent Jobs Get the Scoop

Keep your finger firmly on the pulse. Sign up, and we'll make sure you know about all the newest Santander roles as they become available.

Email Address

Select Your Interests Select a job category from the list of options. Search for a location and select one from the list of suggestions. Finally, click “Add” to create your job alert.

Job CategorySelect a Job CategoryAnalytics/Decision ScienceAnalytics/ReportingAuditBank ManagerBank TellerBusiness AnalystBusiness Control OfficeBusiness DevelopmentBusiness OperationsChrysler Capital SalesCollectionsCollege/InternshipsComplianceConsumer and Business BankingCorporate BankingCorporate Management & InfrastructureCustomer ServiceData ManagementDevelopmentFinanceFraud ManagementHuman ResourcesInformation TechnologyInternal AuditInternal Audit & Credit Risk ReviewInternational BankingInternshipLegalLegal & Corporate AffairsLoan OfficerOperationsOperations StrategyOperations SupportOriginationsPart Time Bank TellerProduct Development & ManagementQuality ControlRiskRisk ManagementSalesSantander Bank or NYB/SIS EmployeesSC SalesTWAUnderwriting


  • Information Technology, Dorchester, Massachusetts, United States
  • Santander Bank or NYB/SIS Employees, Dorchester, Massachusetts, United States

Confirm Email