Penetration Testing Lead
NVIDIA
NVIDIA’s Offensive Security needs a Penetration Testing Lead. The Pentest Lead's main focus will be to schedule, prioritize, and conduct assessments while establishing and maintaining friendship with internal customers. As a part of Product Security, the Pentest Lead will see all types of technology across NVIDIA that needs assessed with gentle understanding and love. Web apps are the least of your concern on the Offensive Security team! This is an opportunity to learn how to attack weird stuff.
An ideal candidate is a Pentest Consultant that enjoys being a consultant: both talking and doing excite you.
What you’ll be doing:
Conduct open box penetration testing assessments on a variety of products, ranging from kernel to web applications
Make friends product owners to scope and schedule assessments, often with another operator but sometimes on your own
Prioritize assessments based on a number of factors: critical stuff goes first, and customers need to understand why they didn't make the list this month and what we can do to help
Communicate the Pentest team's assessment bandwidth and timeline to customers: visually, verbally, on recurring comms, or something else. It's up to you!
Table Top Exercises to generate nightmare scenarios with customers: freeform threat modeling where we cut right to the heart of what scares them about their product, and our recommendations on how to fix it
What we need to see:
10+ years of adversarial experience at a company, organization, or mix of both over 8+ years. This is not an entry or mid level role. Show us that you can throw exploits.
Bachelors degree or equivalent experience
Proven intrapersonal skills, specifically, trustworthy speaking (there are tricks to learning interpersonal skills - don’t let this worry you)
Growth Mindset. Every single day brings opportunities to solve new
You will also be eligible for equity and benefits. NVIDIA accepts applications on an ongoing basis.