---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Architect
Location: Amsterdam, , Netherlands
Type: Permanent F/T
Closing Date: 2005-09-25
International Network Services (INS) provides network consulting services and
business solutions to help companies build, secure, and manage their complex
network infrastructures. Its end-to-end network consulting solutions address
companies’ needs in Next Generation Networking, Security, and Network &
Systems Management, helping companies optimize their business to better face
competitive challenges and meet future demands.
For further information, please go to http://www.ins.com.
The Role
Position: Ethical Hacker
Location: Amsterdam, Netherlands
Key Responsibilities
The Ethical Hacker will be part of INS’ centralised and world-class
Ethical Hacking Centre of Excellence (COE) focusing on the development and
delivery of Ethical Hacking Services. The Ethical Hacker INS Switzerland is
looking for will be identifying vulnerabilities in our clients’ network or
applications that have a potential impact on the company, providing
business-oriented solutions for remediation. Also, he/she will be utilising
INS’ structured Security and Network Engagement Methodologies (NEM),
working on a dedicated team of INS Ethical Hackers simulating attacks on
clients’ networks in a controlled and safe manner to provide a real-life
snapshot of the effectiveness of their security controls.
Duties may include:
• Web Application Vulnerability Testing
Utilises a customised process to conduct Ethical Hacking assessments of
web-based applications
• VPN Vulnerability Testing
Applies a three-phased approach in an attempt to discover, identify, and
penetrate the VPN as well as identify weaknesses in the VPN configuration
• External Network Vulnerability Testing
Attempts to penetrate your Internet firewall infrastructures as well as
surrounding network systems
• Internal Network Vulnerability Testing
Provides you with a thorough understanding of how vulnerable your internal
infrastructure is to threats such as disgruntled employees, hackers who gain
access to the building, and former employees with “lingering” access
• Wireless Vulnerability Testing
Utilises a three-phased approach to identify vulnerabilities within an 802.11
wireless network
• War Dialing
Attempts to identify unauthorised modems that enable dial-in that bypasses your
firewalls and filtering routers
• Pre-sales participation and training of client staff such as performing
“live hacks”
JOB REQUIREMENTS
---------------------------------------------------
Skills
Communications
• Solid written and oral communication
• Technical and business writing
• Analytical interviewing
• Effective listening
• Presentation development and delivery
Engagement Management
• Understanding of best-practice methodologies
Business Development
• Opportunity Identification in close cooperation with the INS sales team
• Ability to articulate components of INS’ security consulting
offering as well as of INS’ associated services
• Capability of writing and delivering sales presentations and scopes of
work
Specific Technical Skills
• Penetration Testing tools: Dsniff, Ethereal, Nessus, N-Stealth, Netcat,
Nmap, tcpdump, WebCracker, Whisker, etc.
• Operating Systems
• Security Technology: Firewalls, IDS/IPS, VPN, PKI, etc.
• Network Protocols
• WAN expertise
• Programming skills: C, C++, Assembler, Perl
Experience
• Very strong knowledge of Computer Forensics, Network and Web application
exploitation, Ethical Hacking, Penetration Testing and toold development
• Expert level experience in bypassing firewalls, evading intrusion
detection
• Extensive technical experience in Network Security products,
Cryptographic suites, Firewalls
• Demonstrable experience in UNIX and Windows administration
• Solid experience in application level attacks
• Knowledge of the software development lifecycle in a large enterprise
• At least 2 years of experience in Penetration Testing
Education
• Computer Science or related technical degree from an accredited
institution or equivalent work experience and practical knowledge
• CISSP and/or GIAC are preferable
Personal Characteristics
• Self starter
• Naturally inquisitive
• Ability to inspire and motivate
• Results-oriented and able to present at senior level
• Ability to focus on priorities
• Fluent Dutch and English language skills
• Dutch citizen, EU citizen or Dutch work permit holder with proven track
record in The Netherlands preferred
• Willingness to travel is a MUST
CONTACT
---------------------------------------------------
Please send an English copy of your CV to our Recruitment Manager Europe, Ms
Wiebke Albert (wiebke.albert@ins.com).
International Network Services
Ms Wiebke Albert
Recruitment Manager Europe
wiebke.albert@ins.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
