Senior Security Analyst (Remote)

  • Detroit, MI, USA
  • Employees can work remotely
  • Full-time
  • Role type: Individual Contributor
  • Department: Security
  • Division: Technology

Company Description

Take a seat on the Xplor rocket ship and join us as a Security Analyst to help people succeed across the world.

At Xplor, we are a powerful global team of smart and capable technology professionals working together to bring innovative solutions to the business and our customers.

In the technology team, we have more than 450 colleagues working in offices and remotely around the world, building the first global platform to integrate software, payments and Commerce Accelerating Technologies to help business succeed.

Job Description

About the opportunity

You'll join Xplor Security, a global team that manages Security Operations for all of our products and services. The role executes protection of our software assets and infrastructure platforms from threat modelling through to penetration testing of customer facing assets.

Reporting into our Global Head of Security Operations, you'll contribute to the security of our platforms and applications. Some of the other responsibilities you'll have: 

  • Support management to plan, coordinate and review Security Assessments globally. 

  • Perform a variety of Penetration Testing engagements end-to-end, including on Platforms, Web Applications, APIs & Mobile Applications. 

  • Take a lead role in above Penetration Testing engagements, where you will perform hands-on penetration test and guide our junior security members technically. 

  • Plan and initiate and Lead Red Team activities based on realistic threats to our organization, by creating attack techniques and utilizing custom tooling to generate exploits. 

  • Write detailed reports covering the outcomes of Penetration Tests and Red Team activities, including observations, techniques, and mitigations. 

  • Oversee the execution of automated vulnerability assessments, where escalations are made to wider technology colleagues. 

  • Support the Implementation of Application and Platform Security controls, by playing a pivotal role in the planning, designing, and configuring controls. 

  • Measurement of Key Risk Indicators and evaluating the effectiveness of our security controls. 

  • Contribute to overall security operations, including incident response, threat response and the operational security of platforms and applications. 

In summary, you will have the opportunity to perform penetration tests including web applications, mobile applications, networks and / or the enterprise infrastructure hosting them - on a variety of products contained within our Groups' portfolio, and mentor junior team members in the same. 

Acting in an advisory capacity, you will produce a commercial grade report which will be provided to our product and engineering teams for their remediation. 

In return, you will be offered every opportunity to further develop and hone your abilities through various training platforms. 

Qualifications

What would make me a good candidate?

We are looking for people who want to make a difference in Security, and welcome applications from those early in their career.

  • 4-7 years' experience in at least three of the following:  

  • Network penetration testing and manipulation of network infrastructure 

  • Mobile and/or web application assessments 

  • Email, phone, or physical social-engineering assessments 

  • Shell scripting or automation of simple tasks using Perl, Python, or Ruby 

  • Developing, extending, or modifying exploits, shellcode or exploit tools 

  • Skills in understanding code in C# or Python 

  • Reverse engineering malware, data obfuscators, or ciphers 

  • Source code review for control flow and security flaws 

  • Strong knowledge of tools (Burp Pro, Nessus, Nmap, Metasploit, Core Impact, Cobalt Strike, Airmon-ng) used for wireless, web application, and network security testing. 

  • Thorough understanding of network protocols, data on the wire, and covert channels 

  • Mastery of Unix/Linux/Mac/Windows operating systems, including bash and PowerShell 

  • Strong concepts of active director environment 

  • Must be eligible to work in the US without sponsorship 

  • Certifications (not must) 

  • eJPT, PNPT, OSCP, eCPPT, CRTO 

  • eWPT, eWPTX, OSWE

Additional Information

What does it mean to work for Xplor?

Our four core values - Make life simple, Build for people, Move with purpose and Create lasting communities - are key to who we are and guide us from how we hire to how we recognise our team members.

Some of the perks of working with us:

  • Unparalleled opportunities to learn and accelerated career development
  • A collaborative, team environment with people who truly love what they do
  • 12 weeks Gender Neutral Paid Parental Leave for both primary and secondary carer
  • Unlimited access to Udemy for Business, 10% of your time devoted to growing you and your career, and further support to help you grow
  • Fully flexible work arrangements
  • Competitive healthcare benefits including EAP support
  • The average base salary pay range for this position is $100,000 to $120,000
  • May be eligible for a discretionary bonus

Sheryl Sandberg once said, “If you're offered a seat on a rocket ship, don't ask what seat! Just get on.” We couldn't agree more. So, are you ready to get on board?

To learn more about us and our products, please visit www.xplortechnologies.com/us/careers. 

All Information will be kept confidential according to EEO guidelines. 

We’re committed to replying to each application and look forward to getting in touch with you soon

To learn more about us and our products, please visit www.xplortechnologies.com/us/careers. 

Xplor is proud to be an Equal Employment Opportunity employer. We're dedicated to attracting, retaining and developing our people regardless of gender identity, ethnicity, sexual orientation, disability, veteran status and age. Applications are encouraged from all sectors of the community. 

All Information will be kept confidential according to EEO guidelines. 

Xplor is committed to the full inclusion of all qualified individuals. In keeping with our commitment, Xplor will take the steps to assure that people with disabilities are provided reasonable accommodations. Accordingly, if reasonable accommodation is required to fully participate in the job application or interview process, to perform the essential functions of the position, and/or to receive all other benefits and privileges of employment, please contact us at [email protected] or +1 561-598-5952.

We promote flexible working wherever we can, so whether you prefer to be fully remote or in an office, the choice can be yours. 

We’re also committed to replying to each application and look forward to getting in touch with you soon.