Verizon
Brussels, Belgium
Responsibilities
Through its team of dedicated Threat and Vulnerability consultants, Verizon is an active member of the international security community and well-respected in the fields of IT security research, vulnerability discovery, metrics development and secure development. Our security consultants are internationally recognised leaders in their field, presenting regularly at leading security conferences such as Black Hat, RSA Conference, CANSECWEST, Brucon, Source, etc.
The Threat and Vulnerability practice is focused on technical IT security audits such as application and infrastructure penetration testing, source code reviews, mobile application assessments, configuration reviews, social engineering testing, SDLC consulting. They provide expertise to Verizon's external clients along with other security practitioners in the field of forensics and incident response, GRC, IAM, PCI compliance, managed SOC, and network security.
The Senior Consultant is a lead actor role that executes and manages consulting projects across the region. A high level of skill (subject matter expert) is required. As the key leader of projects, the Senior Consultant’s responsibilities will involve all of the following:
- Interface with the client, utilize his/her field expertise for delivering projects;
- Contribute own subject expertise during proposal of project engagements;
- Communicate with stakeholders such as the client, managers, colleagues, or project subordinated;
- Develop own skills and that of the others in order to enhance the capability of the team in alignment with the department strategy;
- Report to manager on project progression status, financial status, issues, timesheets, etc.
Qualifications
Required abilities, skills and experience:
- Expertise on wired and wireless network and platform vulnerability scans, penetration testing, and reporting for recommending remediation measures;
- Expertise on application security including web application penetration testing, source code review, and computer programming abilities;
- Expertise on technical security auditing, including platform and network configuration review architecture review, stakeholder interview;
- Excellent writing skills, acute attention to details;
- Good understanding of OS, Middleware, network equipment, security applications and other relevant technology;
- Ability to travel internationally (up to 25%);
- Fluent in English and French and/or Flemish;
- Relevant educational background, such as Bachelor’s degree in computer science or related field;
- 5+ Years of consulting experience on IT and Information Security;
- High communication skills in English and/or Flemish (both verbal and for writing);
- Positive mindset and attitude for continual improvement; strong desire to pursue achievement of goals.
Desirable abilities, skills and experience:
- Expertise in mobile operating systems (iOS, Android);
- Track record of defensive or offensive security research publications (white papers, interventions in security conferences, credits for bug bounties or CVE);
- Industry certification in relevant discipline such as OSCP, OSCE , OSWE, GPEN, GWAPT, GXPN, GMOB, CISSP, CISA, ISO27000;
- Project management experiences in a structured project managed environment;
- Knowledge of the PCI-DSS framework and/or other compliance requirements (ARJEL, ISO27000, PSF);
- Experience in the Banking and Finance verticals.