Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Jobs
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[SJ-JOB] Technology Risk Consultant, Los Angeles, US

from [erin] Network Security [Permanent Link]
Subject: [SJ-JOB] Technology Risk Consultant, Los Angeles, US
Date: 11 May 2005 15:12:40 -0000 

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------


JOB DESCRIPTION
---------------------------------------------------
Position:       Technology Risk Consultant
Location:       Los Angeles, California, US
Type:           Permanent F/T
Closing Date:   06/08/2005

The Technology Risk Consultant will work with project teams and resources to 
ensure that IT Security Policies and Best Practices are followed as systems, 
products and services are designed, built, deployed and upgraded. 

Responsibilities include:

&#149;  Evaluate security requirements, safeguards, vulnerabilities, threats 
and risk 
&#149;  Provide risk mitigation strategies 
&#149;  Conduct Threat Risk Assessments
&#149;  Participate in project and product development lifecycles by: 
evaluating requirements  interviewing stakeholders  providing questions and 
feedback  evaluating technical solutions  managing security testing  producing 
appropriate reports  and following up on recommendations
&#149;  Integrate best practices into solutions from sources such as COBIT, 
HIPAA, ISO17799, NIST, and CERT
&#149;  Interact with clients and partners as part of the client engagement 
lifecycle, evaluating business requirements and analyzing security requirements 
&#149;  Present Threat and Risk Assessments and other security assessment 
findings to the client
Act as project lead and provide guidance to other team members
&#149;  Manage Vulnerability Assessments and Pen Testing, interpret test 
results, and advise in the preparation of use cases
&#149;  Act as a mentor and technical authority for the security team, helping 
to develop and expand the knowledge base within the company



JOB REQUIREMENTS
---------------------------------------------------
Desired qualifications:
&#149;  Four or more years of qualified experience
&#149;  Experience in IT risk and control, systems/network audit, technical 
configuration reviews and project management, plus at least one area of 
technical security expertise
&#149;  Proven ability to define business and technology requirements as they 
relate to privacy and security
&#149;  A solid understanding of various information systems technologies 
including: LAN and WAN  firewalls  Internet protocols and applications  secure 
communications  PKI  role-based access control (RBAC)  and identity management. 
&#149;  Knowledge of the ins and outs of Technology Risk Assessment and other 
risk assessment methodologies and tools, familiarity with related security 
tests and test methodologies
&#149;  Knowledge of regulatory and compliance standards, privacy issues, ISO 
17799, GLBA, HIPAA, and the ITIL Framework are assets
&#149;   CISSP designations and consulting experience are assets



CONTACT
---------------------------------------------------
If interested please send your resume in word format to:  
erin@altaassociates.com

Erin Fallon
Research Associate
Alta Associates
erin@altaassociates.com



---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for 
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [SJ-JOB] Technology Risk Consultant, Los Angeles, US, erin <=
Previous by Date:  [SJ-JOB] Security Consultant, Chicago, US, jularsen
Next by Date:  [SJ-JOB] Security Architect, Denver, US, robin
Previous by Thread:  [SJ-JOB] Security Consultant, Milwaukee, US, jularsen
Next by Thread:  [SJ-JOB] Security Architect, Denver, US, robin
Indexes:  [Date] [Thread] [Top] [All Lists]