Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Jobs
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[SJ-JOB] Jr. Security Analyst, Boston

from [careers] Network Security [Permanent Link]
Subject: [SJ-JOB] Jr. Security Analyst, Boston
Date: 3 Jul 2006 22:22:16 -0000 
---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------


JOB DESCRIPTION
---------------------------------------------------
Position:       Jr. Security Analyst
Location:       Boston, Massachusetts, United States
Type:           Permanent F/T

Closing Date:   2006-07-21

ClearPoint Metrics is seeking creative individuals who have an interest in 
information security and strong analytical abilities to supplement our existing 
Metrics Development team as Security Metric Analysts.  

ClearPoint Metrics produces software that enables the calculation and 
communication of security metrics &#150; quantitative expressions of the state 
and quality of information security &#150; for enterprise customers.   Security 
Metric Analysts will be responsible for developing and maintaining metrics 
around specific topical areas, analyzing security products, and contributing to 
regular updates and releases of metrics models.

This role involves understanding and analyzing IT security risks, and 
developing creative ways to use quantitative models to express the state and 
quality of an organizations IT security.  These security metrics will then be 
expressed in our toolset and driven by data from existing security products.  
These metrics and scorecards will be used in our security metrics products to 
enable CIOs and CISOs at major corporations to improve the management of their 
enterprise security. 

This is an entry to mid-level position in a groundbreaking field, so it is 
expected that significant learning will occur on the job.  The ideal background 
for a candidate would combine information security experience (personal or 
professional) with quantitative modeling experience (such as system dynamics, 
statistics, model-building, or even excel power-use).


JOB REQUIREMENTS
---------------------------------------------------
Activities of the Security Metric Analyst include:
&#149; Understand and remain aware of IT security developments around threats, 
vulnerabilities, and countermeasures.
  
&#149; Become knowledgeable on government rules and regulations that impact IT 
security, participate in security consortiums such as securitymetrics.org and 
securityfocus.org.

&#149; Understand and use best practices in the design of new and valuable 
metrics for measuring all aspects of the security infrastructure of large 
enterprises.

&#149; Work with a small team to design and implement the business logic, 
database, and system interfaces for metrics and graphical scorecards for 
security risks.

&#149; Research security products and analyze the data they produce.  
collaborate with engineering to to access the data.

&#149; Write and communicate effectively. Document designs, host design reviews 
of your work, and give constructive feedback to other engineers.
 
&#149; Support and assist with unit testing and other quality-centric software 
development practices.  Actively participate in bug identification and 
reporting.

The ideal candidate should possess:
&#149; Bachelor degree in computer science, statistics, mathematics, or 
equivalent.

&#149; Understanding of IT security concepts and practices, and familiarity 
with security products such as Vulnerability Scanners, Anti-Virus products, 
etc. on both a conceptual and practical level.

&#149; 2+ years experience with enterprise IT systems (as a user, analyst, 
consultant, administrator, etc.).

&#149; Experience and knowledge of quantitative risk analysis and modeling (you 
must be understand the difference between mean and median).

&#149; Be able to express concepts and formula verbally and written, as 
algorithms, and with programming language concepts, ideally Javascript.

&#149; Practical experience with databases and SQL is useful.


CONTACT
---------------------------------------------------
Please send your resume as plain text in the email body and also as an 
attachment to careers@clearpointmetrics.com. 

You can also see this job description along with additional software job 
openings on our website, www.clearpointmetrics.com. 

ClearPoint Metrics
 

careers@clearpointmetrics.com



---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [SJ-JOB] Jr. Security Analyst, Boston, careers <=
Previous by Date:  [SJ-JOB] Security Auditor, Richmond, securityjobs
Next by Date:  [SJ-JOB] Management, Statewide, raymc
Previous by Thread:  [SJ-JOB] Security Auditor, Richmond, securityjobs
Next by Thread:  [SJ-JOB] Management, Statewide, raymc
Indexes:  [Date] [Thread] [Top] [All Lists]