---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Engineer
Location: Brooklyn, New York, United States
Type: Permanent F/T
Closing Date: 2006-07-28
Application Security Integrator
The person in this role will not be developing applications, but instead will
be working with the global development organization to improve the security of
applications across the Firm.
Some of the specific roles and responsibilities for this position are:
Subject Matter Expert on application security across the entire Software
Development Life Cycle.
Lead architecture design and review sessions with development teams to ensure
that security is designed into applications at the earliest stages.
Provide specific engineering expertise into tactical coding areas in projects.
Such areas might include secure database access, implementing encryption,
access control, etc.
Help identify areas of infrastructure the Firm might want to invest in to
further improve the discipline of application security. This could include
commercial tools, internally developed libraries, certification courses, and so
forth.
--------------------------------------------------------------------------------------
Andiamo Partners adheres to a strict policy regarding candidate
confidentiality, both internally and when interacting with our clients. We
pride ourselves with maintaining a high level of professionalism and compliance
to a firm policy with confidential job seekers.
If you are currently working and prefer to protect your identity during your
job search, feel secure contacting one of our professional recruiters. In
addition, Andiamo Partners will never represent your resume to any of our
clients without your expressed desire and prior approval.
--------------------------------------------------------------------------------------
Based in New York, Andiamo Partners is a globally recognized Technology
Staffing and Consulting firm specializing in acquiring profoundly talented
Information Technology resources on behalf of the world*s largest and most
well-known securities firms.
Andiamo Partners has an impressive client list that includes firms such as
Morgan Stanley, HSBC, BNP Paribas as well as many other major financial
services firms and prestigious hedge funds.
Andiamo Partners specializes in the following:
Business Lines:
Equity (Stocks, Options, Futures, Structured Products, Swaps)
Fixed Income (Credit Derivatives, Interest Rate Derivatives, MBS, ABS, Bonds,
Treasuries),
Hedge Funds, Program Trade, Prime Brokerage, Quantitative Analysis,
Commodities, Foreign Exchange (FX), Mutual Funds, Retirement Systems, Clearing
Houses, Exchanges, Asset Management, Client Connectivity/FIX, ECN, Market Data,
Order Management, Reference Data, Security Master.
Technology Lines:
Application Development & Integration, Infrastructure Management, Project
Management/Business Analysis, Information Security, Quality Assurance,
Desktop/Helpdesk Support, Trade Floor Technology, Executive IT Management.
Andiamo Partners currently has 100*s of open IT positions for both consultants
and full time employees in the above noted areas. For further information about
Andiamo Partners, please visit www.andiamopartners.com.
--------------------------------------------------------------------------------------
JOB REQUIREMENTS
---------------------------------------------------
SKILLS REQUIRED:
Skills are divided into two categories, Required and Additional. All of the
Required skills must be present for a candidate to be considered. We do not
require all of the Additional skills, but will only be looking to hire a
candidate that can demonstrate proficiency is a significant number of them.
Required:
Strong interpersonal skills are critical, since the individual will be
interacting with developers and executives around the world, and must be able
to effect change and influence decisions.
Programming: Although this role is not an active programming position, the
successful candidate will have had several years of meaningful programming
experience in a large corporate environment.
Languages:
Java is a requirement. The ideal candidate will have significant experience
with several other practical languages as well, such as C/C++, C#, VB.
Scripting languages (Perl in particular) will be helpful.
Across all topics, candidate should have expertise with security-related topics
such as authentication mechanisms, data protection, validation checking,
encryption, hashing, principle of least privilege, software attack
methodologies, etc. Genuine expertise is required here, as the candidate will
be extensively tested on security principles.
Additional:
Frameworks, protocols and subsystems: J2EE, .NET, RPC, SOAP, MQSeries
N-Tier application design and implementation, particularly web-based
applications that cross company boundaries.
Authentication issues:
An understanding of system authentication technologies (Active Directory and
Kerberos in particular) and broader Identity Management technologies
(SiteMinder, SAML, Liberty Alliance, WS-Security) is essential.
Database programming experience is highly important, which minimally includes a
detailed understanding SQL and ideally encompasses broader knowledge of
database security and management.
Automated testing tools: Experience with automated vulnerability assessment
tools (Watchfire), or with more general purpose testing tools (such as Purify).
Experience with mainframe technologies would be beneficial.
EDUCATIONAL REQUIREMENTS:
Bachelors Degree with min 7 - 10 yrs relevant work experience in high-paced,
enterprise environment.
CONTACT
---------------------------------------------------
Vishal Mehta
vishal.mehta@andiamopartners.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
