We are looking for a senior application security engineer or penetration tester with detailed technical knowledge in cybersecurity engineering, system and network security, and general knowledge of software development to work as an integral part of our application security team. You will collaborate with experienced technology and cybersecurity experts to provide advisory services to a variety of business units.

What you'll be doing:

• Perform application security assessments using industry standards (e.g., OWASP ASVS).

• Complete penetration tests using a broad range of tools to discover and exploit possible vulnerabilities and weaknesses within cloud, on-premises, and hybrid environments.

• Document findings and remediation recommendations and collaborate with engineering teams to ensure vulnerability findings are successfully and efficiently addressed.

• Provide guidance on implementing and/or improving secure software development processes.

• Deliver training and provide mentoring to software engineers on security and DevSecOps topics.

• Lead and facilitate threat modeling exercises to ensure optimized security design decisions are being made.

• Maintain up-to-date knowledge of security standards, e.g., OWASP, NIST, other security standards, security testing, and technologies.

• Practice flexibility to support your team when working with a diverse customer base.

What we need to see:

• 8+ years of combined relevant experience.

• Hands-on experience performing application and network penetration tests.

• Experience using penetration testing and security assessment tools such as Nmap, Nessus, Kali Linux, Metasploit, Burp Suite, Wireshark, etc.

• Knowledge of frameworks and standards, such as the NIST Cybersecurity set of frameworks, CIS, and OWASP.

• Familiarity with application architectures and technology like Docker, Kubernetes, and microservices.

• Experience running red team and blue team exercises.

• Pursuing or currently holding one or more of the following certifications: OSCP (Offensive Security Certified Professional), CEH (Certified Ethical Hacker), LPT (Licensed Penetration Tester), Penetration Tester (GPEN), Exploit Researcher and Advanced Penetration Tester (GXPN), Web Application Penetration Tester (GWAPT)

• Bachelor’s degree in Computer Science, Information Systems, Engineering or equivalent experience.

With competitive salaries and a generous benefits package, NVIDIA is widely considered to be one of the technology world’s most desirable employers. We have some of the most forward-thinking and dedicated people in the world working for us, and, due to unprecedented growth, our outstanding operations teams are rapidly growing! If you're a creative individual with a real passion for technology, we want to hear from you.

The base salary range is 160,000 USD - 304,750 USD. Your base salary will be determined based on your location, experience, and the pay of employees in similar positions.NVIDIA is committed to fostering a diverse work environment and proud to be an equal opportunity employer. As we highly value diversity in our current and future employees, we do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.