---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Architect
Location: Frankfurt or Munich, , Germany
Type: Permanent F/T
Closing Date: 2006-06-12
Position: Senior Web Application Tester
Location: Frankfurt or Munich/ Germany
The centralised and world-class Ethical Hacking Center of Excellence (COE) of
INS is growing rapidly and is looking for talented experienced Web Application
Penetration Testers to join the team in the US, Europe and in Asia. We are
looking for candidates with experience in performing web application testing or
experience in web application development/ security. Candidates will be working
from home, from the COE facilities, and traveling to client sites to perform
engagements.
Duties may include:
• Web Application Vulnerability Testing
Utilises a customised process to conduct Ethical Hacking assessments of
web-based applications
• VPN Vulnerability Testing
Applies a three-phased approach in an attempt to discover, identify, and
penetrate the VPN as well as identify weaknesses in the VPN configuration
• External Network Vulnerability Testing
Attempts to penetrate your Internet firewall infrastructures as well as
surrounding network systems
• Internal Network Vulnerability Testing
Provides you with a thorough understanding of how vulnerable your internal
infrastructure is to threats such as disgruntled employees, hackers who gain
access to the building, and former employees with “lingering” access
• Wireless Vulnerability Testing
Utilises a three-phased approach to identify vulnerabilities within an 802.11
wireless network
• War Dialing
Attempts to identify unauthorised modems that enable dial-in that bypasses your
firewalls and filtering routers
• Pre-sales participation and training of client staff such as performing
“live hacks”
JOB REQUIREMENTS
---------------------------------------------------
Skills
Communications
• Solid written and oral communication
• Technical and business writing
• Analytical interviewing
• Effective listening
• Presentation development and delivery
Engagement Management
• Understanding of best-practice methodologies
Business Development
• Opportunity Identification in close cooperation with the INS sales team
• Ability to articulate components of INS’ security consulting
offering as well as of INS’ associated services
• Capability of writing and delivering sales presentations and scopes of
work
Specific Technical Skills
• Penetration Testing tools: Dsniff, Ethereal, Nessus, N-Stealth, Netcat,
Nmap, tcpdump, WebCracker, Whisker, etc.
• Operating Systems
• Security Technology: Firewalls, IDS/IPS, VPN, PKI, etc.
• Network Protocols
• WAN expertise
• Programming skills: C, C++, Assembler, Perl
Experience
• Very strong knowledge of Network and Web application exploitation,
Ethical Hacking, Penetration Testing and toold development
• Expert level experience in bypassing firewalls, evading intrusion
detection
• Extensive technical experience in Network Security products,
Cryptographic suites, Firewalls
• Demonstrable experience in UNIX and Windows administration
• Solid experience in application level attacks
• Knowledge of the software development lifecycle in a large enterprise
• At least 2 years of experience in Penetration Testing
Education
• Computer Science or related technical degree from an accredited
institution or equivalent work experience and practical knowledge
• CISSP and/or GIAC are preferable
Personal Characteristics
• Self starter
• Naturally inquisitive
• Ability to inspire and motivate
• Results-oriented and able to present at senior level
• Ability to focus on priorities
• Fluent German and English language skills
• German or EU citizen with proven track record in Europe preferred
• Willingness to travel is a MUST
International Network Services (INS) provides network consulting services and
business solutions to help companies build, secure, and manage their complex
network infrastructures. Its end-to-end network consulting solutions address
companies’ needs in Next Generation Networking, Security, and Network &
Systems Management, helping companies optimize their business to better face
competitive challenges and meet future demands.
For further information, please go to http://www.ins.com.
CONTACT
---------------------------------------------------
Please send an English copy of your CV to our Recruitment Manager Europe, Ms
Wiebke Albert (wiebke.albert@ins.com).
International Network Services GmbH
Ms Wiebke Albert
wiebke.albert@ins.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
