{"id":52678,"date":"2025-03-18T00:59:51","date_gmt":"2025-03-18T00:59:51","guid":{"rendered":"https:\/\/www.whitehattoolbox.com\/jobs\/principal-penetration-testing-engineer\/"},"modified":"2025-03-18T00:59:51","modified_gmt":"2025-03-18T00:59:51","slug":"principal-penetration-testing-engineer","status":"publish","type":"post","link":"https:\/\/www.whitehattoolbox.com\/jobs\/principal-penetration-testing-engineer\/","title":{"rendered":"Principal Penetration Testing Engineer"},"content":{"rendered":"

Career Category Information Systems<\/span>Job Description<\/b><\/span>Join Amgen\u2019s Mission of Serving Patients<\/span>At Amgen, if you feel like you\u2019re part of something bigger, it\u2019s because you are. Our shared mission\u2014to serve patients living with serious illnesses\u2014drives all that we do.<\/span>Since 1980, we\u2019ve helped pioneer the world of biotech in our fight against the world\u2019s toughest diseases. With our focus on four therapeutic areas \u2013Oncology, Inflammation, General Medicine, and Rare Disease\u2013 we reach millions of patients each year. As a member of the Amgen team, you\u2019ll help make a lasting impact on the lives of patients as we research, manufacture, and deliver innovative medicines to help people live longer, fuller happier lives.<\/span>Our award-winning culture is collaborative, innovative, and science based. If you have a passion for challenges and the opportunities that lay within them, you\u2019ll thrive as part of the Amgen team. Join us and transform the lives of patients while transforming your career.<\/span>Principal Penetration Testing Engineer<\/span>What you will do<\/b><\/span>Let\u2019s do this. Let\u2019s change the world. In this vital role has a strong focus on ensuring the organization’s infrastructure, applications, and systems are secure from external and internal threats. As a senior-level position, this role involves not only hands-on penetration testing but also overseeing teams, setting testing strategies, and working closely with other security and engineering teams to implement long-term security improvements. The ideal candidate has in-depth knowledge of cybersecurity practices, experience in complex security assessment practices and strong leadership skills.[BB1] [MG2]<\/span>Roles & Responsibilities:<\/b><\/span>\u00d8 Perform advanced security testing (e.g., penetration testing, code reviews) and ensure continuous security monitoring across the organization\u2019s IT landscape.<\/span>\u00d8 Identify vulnerabilities in networks, systems, applications, and infrastructure through hands-on penetration testing.<\/span>\u00d8 Attempt to exploit discovered vulnerabilities to demonstrate their impact and prove their existence (e.g., retrieving sensitive data, elevating user privileges, or gaining access to admin functionality).<\/span>\u00d8 Perform assessments on web applications, cloud environments, and network infrastructure.<\/span>\u00d8 Use automated tools and manual techniques to identify security weaknesses.<\/span>\u00d8 Conduct advanced post-exploitation tasks to simulate real-world attack scenarios.<\/span>\u00d8 Build or modify existing penetration testing tools to streamline testing processes.<\/span>\u00d8 Implement automation frameworks to improve the efficiency and repeatability of vulnerability assessments and penetration tests.<\/span>\u00d8 Guide junior penetration testers in techniques, toolsets, and reporting.<\/span>\u00d8 Assist in developing the skills of the cybersecurity team through formal and informal training sessions.<\/span>\u00d8 Review and ensure the quality of penetration testing reports and findings of junior testers.<\/span>\u00d8 Work with third-party security vendors for audits, product testing, and external assessments when required.<\/span>\u00d8 Use automated tools (e.g., Burp Suite, OWASP ZAP, or Acunetix) to identify common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others.<\/span>\u00d8 Document identified vulnerabilities in detail, explaining how they were found, their severity, and their potential impact. Include proof-of-concept (PoC) for critical vulnerabilities.<\/span>\u00d8 Offer actionable, practical solutions for fixing vulnerabilities, such as secure coding practices, configuration changes, or security controls.<\/span>\u00d8 Use risk-based prioritization, categorizing issues by their severity and business impact (e.g., high, medium, low) to help the organization focus on the most critical issues.<\/span>\u00d8 Continuously learn about the latest vulnerabilities, exploits, and security trends.<\/span>\u00d8 Present the findings to stakeholders, security teams, and management, explaining the business risk and potential impacts of the vulnerabilities discovered.<\/span>\u00d8 Provide broader application security recommendations, such as adopting secure development frameworks, improving logging and monitoring, or enhancing incident response capabilities.<\/span>\u00d8 Provide guidance and feedback on the organization’s security policies and incident response plans based on findings from penetration tests.<\/span>\u00d8 Serve as a trusted advisor on key security decisions and risk management.[BB3] [MG4]<\/span>Familiarity with industry standards and compliance requirements (e.g., PCI-DSS, NIST, ISO 27001) and their relevance to penetration testing.<\/span>Since the role will be technical, I recommend downplaying (not removing) strong leadership skills. [BB1]<\/span>No disconfirm. Accept edit. [MG2]<\/span>Same as before, downplaying business facing interaction to focus on technical expertise. We can handle interaction with senior leadership. [BB3]<\/span>No disconfirm. Accept edit. [MG4]<\/span>What we expect of you<\/b><\/span>We are all different, yet we all use our unique contributions to serve patients.<\/span>Master\u2019s degree and 8 to 10 year of experience in Computer Science, Cybersecurity or Information Systems related field OR<\/span>Bachelor\u2019s degree and 10 to 14 year of experience in Computer Science, Cybersecurity or Information Systems related field OR<\/span>Diploma and 14 to 18 year of experience in Computer Science, Cybersecurity or Information Systems related field<\/span>Must-Have Skills:<\/span>Strong knowledge of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25), network protocols, encryption standards, application security and common penetration testing methodologies (ISSAF, OSSTMM, PTES).<\/span>Familiarity with tools like Burp Suite, OWASP ZAP and Metasploit.<\/span>A deep understanding of web application architecture, databases, and authentication mechanisms.<\/span>Ability to think critically and creatively when testing and attempting to exploit vulnerabilities.<\/span>Preferred Qualifications:<\/b><\/span>Good-to-Have Skills:<\/span>Experience with threat intelligence and incorporating emerging threats into penetration testing practices<\/span>Proficiency in scripting and automation (e.g., Python, Bash) is a plus<\/span>Professional Certifications (please mention if the certification is preferred or mandatory for the role):<\/span>Preferred: OSCP, OSWE, OSWA, eWPTX, GWAPT, GXPN<\/span>Preferred: CISSP<\/span>Soft Skills:<\/b><\/span>Excellent analytical and troubleshooting skills<\/span>Strong verbal and written communication skills<\/span>Ability to work effectively with global, virtual teams<\/span>High degree of initiative and self-motivation<\/span>Ability to manage multiple priorities successfully<\/span>Team oriented, with a focus on achieving team goals<\/span>Strong presentation and public speaking skills<\/span>What you can expect of us<\/span>As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we\u2019ll support your journey every step of the way.<\/span>In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards.<\/span>Apply now<\/span>for a career that defies imagination<\/span>Objects in your future are closer than they appear. Join us.<\/span>careers.amgen.com<\/span>As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease.<\/span>Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law.<\/span>We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.<\/span>.<\/p>\n

Apply Now<\/a> <\/b><\/center><\/p>\n","protected":false},"excerpt":{"rendered":"

Career Category Information Systems Job Description Join Amgen\u2019s Mission of Serving Patients At Amgen, if you feel like you\u2019re part of something bigger, it\u2019s because you are. Our shared mission\u2014to serve patients living with serious illnesses\u2014drives all that we do. Since 1980, we\u2019ve helped pioneer the world of biotech in our fight against the world\u2019s<\/p>\n","protected":false},"author":1,"featured_media":52679,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[20,71,15,28],"tags":[],"class_list":["post-52678","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-it-jobs","category-it-jobs-jobs-in-uae","category-jobs-in-india","category-testing-jobs"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.whitehattoolbox.com\/jobs\/wp-content\/uploads\/2025\/03\/52678-principal-penetration-testing-engineer.png?fit=1306%2C840&ssl=1","jetpack-related-posts":[{"id":109633,"url":"https:\/\/www.whitehattoolbox.com\/jobs\/specialist-8\/","url_meta":{"origin":52678,"position":0},"title":"Specialist","author":"Admin","date":"August 29, 2025","format":false,"excerpt":"Career Category Quality Job Description Join Amgen\u2019s Mission of Serving Patients At Amgen, if you feel like you\u2019re part of something bigger, it\u2019s because you are. Our shared mission\u2014to serve patients living with serious illnesses\u2014drives all that we do. Since 1980, we\u2019ve helped pioneer the world of biotech in our\u2026","rel":"","context":"In "BPO\/KPO Jobs"","block_context":{"text":"BPO\/KPO Jobs","link":"https:\/\/www.whitehattoolbox.com\/jobs\/category\/jobs-in-india\/it-jobs\/bpo-kpo-jobs\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":115043,"url":"https:\/\/www.whitehattoolbox.com\/jobs\/sr-associate-is-analyst\/","url_meta":{"origin":52678,"position":1},"title":"Sr Associate IS Analyst","author":"Admin","date":"September 14, 2025","format":false,"excerpt":"Career Category Information Systems Job Description Join Amgen\u2019s Mission of Serving Patients At Amgen, if you feel like you\u2019re part of something bigger, it\u2019s because you are. Our shared mission\u2014to serve patients living with serious illnesses\u2014drives all that we do. Since 1980, we\u2019ve helped pioneer the world of biotech in\u2026","rel":"","context":"In "Hardware Jobs"","block_context":{"text":"Hardware Jobs","link":"https:\/\/www.whitehattoolbox.com\/jobs\/category\/jobs-in-india\/it-jobs\/hardware-jobs\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":100040,"url":"https:\/\/www.whitehattoolbox.com\/jobs\/validation-engineer-clinical-data-hub\/","url_meta":{"origin":52678,"position":2},"title":"Validation Engineer – Clinical Data Hub","author":"Admin","date":"July 30, 2025","format":false,"excerpt":"Career Category Engineering Job Description Join Amgen\u2019s Mission of Serving Patients At Amgen, if you feel like you\u2019re part of something bigger, it\u2019s because you are. Our shared mission\u2014to serve patients living with serious illnesses\u2014drives all that we do. Since 1980, we\u2019ve helped pioneer the world of biotech in our\u2026","rel":"","context":"In "Jobs in India"","block_context":{"text":"Jobs in India","link":"https:\/\/www.whitehattoolbox.com\/jobs\/category\/jobs-in-india\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":100277,"url":"https:\/\/www.whitehattoolbox.com\/jobs\/healthcare-advisor-oncology-delta-region\/","url_meta":{"origin":52678,"position":3},"title":"Healthcare Advisor Oncology – Delta Region","author":"Admin","date":"July 31, 2025","format":false,"excerpt":"Career Category Sales Job Description HOW MIGHT YOU DEFY IMAGINATION? If you feel like you\u2019re part of something bigger, it\u2019s because you are. At Amgen our shared mission\u2014to serve patients\u2014drives all that we do. It is key to our becomi...","rel":"","context":"In "Jobs In Egypt"","block_context":{"text":"Jobs In Egypt","link":"https:\/\/www.whitehattoolbox.com\/jobs\/category\/jobs-in-gulf-countries\/jobs-in-egypt\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":110087,"url":"https:\/\/www.whitehattoolbox.com\/jobs\/specialist-is-bus-sys-analyst-tech-product-owner\/","url_meta":{"origin":52678,"position":4},"title":"Specialist IS Bus Sys Analyst \u2013 Tech. Product Owner","author":"Admin","date":"August 31, 2025","format":false,"excerpt":"Career Category Information Systems Job Description Join Amgen\u2019s Mission of Serving Patients At Amgen, if you feel like you\u2019re part of something bigger, it\u2019s because you are. Our shared mission\u2014to serve patients living with serious illnesses\u2014drives all that we do. Since 1980, we\u2019ve helped pioneer the world of biotech in\u2026","rel":"","context":"In "Jobs in India"","block_context":{"text":"Jobs in India","link":"https:\/\/www.whitehattoolbox.com\/jobs\/category\/jobs-in-india\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":112519,"url":"https:\/\/www.whitehattoolbox.com\/jobs\/senior-manager-competitive-intelligence-rd-cda\/","url_meta":{"origin":52678,"position":5},"title":"Senior Manager – Competitive Intelligence (R&D), CD&A","author":"Admin","date":"September 7, 2025","format":false,"excerpt":"Career Category Research Job Description Senior Manager \u2013 Competitive Intelligence \u2013 R&D, CD&A Role Name: Sr Manager of Competitive Intelligence \u2013 R&D, CD&A Department Name: Customer Data and Analytics (CD&A) Role GCF: 6 ABOUT AMGEN Amgen is committed to unlocking the potential of biology for patients suffering from serious illnesses\u2026","rel":"","context":"In "Jobs in India"","block_context":{"text":"Jobs in India","link":"https:\/\/www.whitehattoolbox.com\/jobs\/category\/jobs-in-india\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pg9e9d-dHE","_links":{"self":[{"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/posts\/52678","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/comments?post=52678"}],"version-history":[{"count":0,"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/posts\/52678\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/media\/52679"}],"wp:attachment":[{"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/media?parent=52678"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/categories?post=52678"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.whitehattoolbox.com\/jobs\/wp-json\/wp\/v2\/tags?post=52678"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}