Offensive Security Engineer, Penetration Testing and Intake Management

The Information Security Protect organization at Procter & Gamble is seeking an Offensive Security Engineer for a hybrid role that combines intake coordination and penetration testing.

Requirements

• Consult, design, and execute adversary simulation scenarios.
• Perform manual penetration tests of websites, services, infrastructure, networks, IoT Devices, and mobile applications to discover and exploit vulnerabilities.
• Work with cross functional teams to develop remediation suggestions based on scenario outcomes.
• Report observations using a standardized reporting structure.
• Bypass preventative and detective security controls to accomplish scenario goals.
• Conduct research into real-world threat actor tactics, techniques, and procedures to develop proof of concept tools.
• Investigate findings from our Vulnerability Disclosure Program.
• Partner with Cyber Defense Protect, Detect and Respond teams to operationalize new Cyber Security concepts and processes.
• Manage relationships of customers and key stakeholders.
• Supporting reporting and template creation process.
• Coordinate and oversee the end-to-end preparation and scheduling of penetration testing assessments, including managing the testing queue and ensuring timely execution of all testing activities.
• Identify areas for team process improvement.

Benefits

• P&G-sized projects and access to world leading IT partners and technologies from Day 1.
• Wide range of self-development possibilities (training and certifications paths).
• Competitive starting salary and benefits program (private health care, P&G stock, saving plans, sport cards).
• Regular salary increases and possible promotions - in line with your results and performance.
• Opportunity to change role every few years to be in the best place for you and best for P&G.