Demo
Salary Resume Critique Job Openings

Senior Ethical Hacker, Applications & Cloud

Stantec
Atlanta, GA Full Time
POSTED ON 3/25/2025
AVAILABLE BEFORE 4/7/2025

Senior Ethical Hacker, Applications & Cloud - ( 24000331 )

Description

Grow with the best. Join a smart, creative, and inspired team that accomplishes operational excellence. Bringing together individuals with diverse backgrounds, talents, and expertise, our 31,000 team members in over 450 locations worldwide are vital to making our Company stronger.

Your Opportunity

The Senior Ethical Hacker will conduct security assessments on web applications and cloud services by emulating real-world attacks using the Mitre Attack Framework. Their goal is to identify security weaknesses, help prevent data breaches and enhance the security posture by uncovering vulnerabilities, misconfigurations, and risks proactively before they are discovered by threat actors.

Your Key Responsibilities

Communication

  • Collaborate with cross-functional teams (security, engineering, cloud and network operations).
  • Create reports and communicate findings to various technical teams, architects and engineers.
  • Create and communicate processes that could help engineering teams meet remediation goals.
  • Create and verbally present your test findings in debrief meetings with the C-Suite or sponsors.

Cloud and Application

  • Conduct penetration tests on cloud systems, applications and APIs to identify vulnerabilities.
  • Assess cloud / application specific configurations, access controls, and encryption mechanisms.
  • Validate and exploit security findings within web / thick client apps and cloud environments.
  • Validate various app services, databases, Kubernetes, serverless functions, container instances, images and cloud storage blob / buckets for security issues.

    • Project work / Knowledge Share

  • Assist / Create rules of engagement for new pen test projects.
  • Create or populate content in the internal training lab so developers and security champions can stay current in offensive security with practical CTF's when time permits.
  • Provide live hacking webinars for teams interested in learning by example.
  • Conduct internal Red Team engagements.
  • Participate in purple team engagements.

    • Qualifications

    Your Capabilities and Credentials

  • Minimum 5-7 years working in some aspect of cybersecurity (Offensive Security, Red Team experience preferred).
  • Proficient with manual web / cloud penetration testing without using any tools.
  • Proficient writing custom attack tools in Python, PHP, Golang and Bash Scripting.
  • Proficient with interception proxies and attacking manually via Burp Suite Enterprise tool.
  • Proficient building / maintaining attack automation systems (Commercial or Open-Source).
  • Proficient building containers and automation pipelines for attacking purposes.
  • Experience combining multiple low / medium findings to weaponize and achieve a higher level.
  • Comfortable working exclusively from Windows or Linux command line.
  • Comfortable "living off the land" using VIM / VI / Bash / SH / Perl / VBScript / WMI / PowerShell for post exploitation and lateral movement.
  • Comfortable with writing XSS attacks, System / SQL injection payloads or weaponizing binaries.
  • Comfortable attacking various popular public cloud services in (Azure / AWS / GCP / Oracle).
  • Comfortable presenting audit findings to a small group or C-Suite during debrief meetings.
  • Comfortable taking ownership for testing actions and performing blameless post-mortems.

    • Preference for the following additional Skills / Certifications

  • OffSec Web Expert (OSWE) - Preferred
  • GIAC Web Application Penetration Tester (GWAPT)
  • Burp Suite Certified Practitioner (BSCP)
  • Pentester Academy Cloud Security Professional (PACSP)
  • Acknowledged findings in a responsible disclosure or public, private Bug Bounty program.
  • Certified Kubernetes Security Specialist (CKS)
  • Terraform Associate (003)
  • DevSecOps experience

    • Education and Experience

  • Minimum 5 years relevant experience.
  • Related Degree or Certificate, preferably in area of Offensive Security and Application Security

    • This description is not a comprehensive listing of activities, duties or responsibilities that may be required of the employee and other duties, responsibilities and activities may be assigned or may be changed at any time with or without notice.

    Stantec is a place where the best and brightest come to build on each other's talents, do exciting work, and make an impact on the world around us. Join us and redefine your personal best.

    Benefits Summary : Regular full-time and part-time employees have access to medical, dental, and vision plans, a wellness program, health saving accounts, flexible spending accounts, 401(k) plan, employee stock purchase program, life and accidental death & dismemberment (AD&D) insurance, short-term / long-term disability plans, emergency travel benefits, tuition reimbursement, professional membership fee coverage and paid family leave. Regular full-time and part-time employees will receive ten paid holidays in each calendar year. In addition, employees will be eligible to accrue vacation between 10 and 20 days per year and eligible for paid sick leave (and if more generous, in accordance with state and local law).

    Temporary / casual employees have access to 401(k) plans, employee stock purchase program, and paid leave, in accordance with state and local law.

    The benefits information listed above may not apply to union positions because benefits for such positions are governed by applicable collective bargaining agreements.

    Primary Location : United States-Texas-Austin

    Other Locations : United States-Georgia-Atlanta, United States-Michigan-Berkley, United States-Florida-Miami, United States-Florida-Tampa, United States-Michigan-Brighton, United States-Pennsylvania-Pittsburgh, United States-Michigan-Farmington Hills

    Organization : BC-1973 IT Services-US Corporate

    Employee Status : Regular

    Job Level : Individual Contributor

    Travel : No

    Schedule : Full-time

    Job Posting : Aug 15, 2024, 8 : 21 : 21 AM

    Req ID : 24000331

    additional

    Stantec provides equal employment opportunities to all qualified employees and applicants for future and current employment and prohibit discrimination on the grounds of race, color, religion, sex, national origin, age, marital status, genetic information, disability, protected veteran status, sexual orientation, gender identity or gender expression. We prohibit discrimination in decisions concerning recruitment, hiring, referral, promotion, compensation, fringe benefits, job training, terminations or any other condition of employment. Stantec is in compliance with local, state and federal laws and regulations and ensures equitable opportunities in all aspects of employment. EEO including Disability / Protected Veterans

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Senior Ethical Hacker, Applications & Cloud?

    Sign up to receive alerts about other jobs on the Senior Ethical Hacker, Applications & Cloud career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $59,793 - $89,166
    Income Estimation: 
    $73,266 - $131,599
    Income Estimation: 
    $83,579 - $128,541
    Income Estimation: 
    $92,729 - $118,963
    Income Estimation: 
    $118,965 - $150,754
    Income Estimation: 
    $118,965 - $150,754
    Income Estimation: 
    $141,372 - $178,696
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Stantec

    Marine Scientist
    Stantec
    Hired Organization Address Topsham, ME Full Time
    Marine Scientist - ( 25000078 ) Description Grounded in safety, quality, and ethics, our experts lead their fields and g...
    Transportation Planning and Traffic Engineering Team Lead
    Stantec
    Hired Organization Address Albuquerque, NM Full Time
    Transportation Planning and Traffic Engineering Team Lead - ( 240003GD ) Description Do you see your career as a highway...
    Transportation Planning and Traffic Engineering Team Lead
    Stantec
    Hired Organization Address Las Cruces, NM Full Time
    Transportation Planning and Traffic Engineering Team Lead - ( 240003GD ) Description Do you see your career as a highway...
    Water Resources Project Manager
    Stantec
    Hired Organization Address Overland Park, KS Full Time
    Water Resources Project Manager - ( 240003KD ) Description Grounded in safety, quality, and ethics, our experts lead the...
    View More Jobs at Stantec

    Not the job you're looking for? Here are some other Senior Ethical Hacker, Applications & Cloud jobs in the Atlanta, GA area that may be a better fit.

    Oil & Gas Industry Applications Engineer

    Cloud Software Group, Franklin, GA

    Senior Manager, Sales Account Executive

    Currency Cloud, Atlanta, GA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!