Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Jobs
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[SJ-JOB] Application Security Engineer, Dulles

from [atheodore] Network Security [Permanent Link]
Subject: [SJ-JOB] Application Security Engineer, Dulles
Date: 28 Dec 2006 00:30:21 -0000 
---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------


JOB DESCRIPTION
---------------------------------------------------
Position:       Application Security Engineer
Location:       Dulles, Virginia, United States
Type:           Permanent F/T

Closing Date:   2007-01-26

General Responsibilities:
As Cigital engages with clients in the application of our software or process 
improvement methodologies, the Senior Security Consultant is responsible for 
the execution and delivery of planned project deliverables and milestones that 
assist clients in learning, understanding, and applying software or process 
improvement methodologies.  He/She has task responsibility within one or more 
projects, typically with one client. The Senior Consultant possesses solid 
business knowledge, Cigital methodology, technical, general consulting, project 
management and teaching skills. He/She is current on industry issues and 
supports proposal preparation.  The Senior Consultant supports marketing 
efforts, is expected to identify follow on work, and mentor employees.

General Qualifications:
&#149;  Consulting skills
&#150;  Ability to interface with clients, utilizing consulting and negotiating 
skills
&#150;  Ability to undertake and complete tasks independently, meet schedules 
and delivery timelines, and to move swiftly from concepts and theory to action
&#150;  Ability to provide pre-sales/post-sales technical support
&#149;  Team Oriented skills
&#150;  Ability to collaborate with project team members
&#149;  Project Management
&#150;  Ability to give direction as project lead and execute tasks consistently
&#149;  Project Leadership
&#150;  Ability to mentor consultants and to lead and execute projects to 
successful completion
&#149;  Communication
&#150;  Requires written communication skills for use in preparing formal 
documentation, Statements of Work, proposals, white papers, and case studies
&#150;  Verbal requirements that include the ability to clearly articulate 
thoughts and deliver presentation and training to all levels of management
&#150;  Ability to persuade
&#149;  Demeanor
&#150;  Enthusiasm and commitment with professional interpersonal skill and an 
entrepreneurial drive

Specific Qualifications:
&#149;  Deep knowledge of TCP/IP and related application protocols
&#149;  Perform Web application penetration testing and security vulnerability 
testing
&#149;  Ability to scope testing activities based on requirements analysis and 
design
&#149;  Able to do manual vulnerability assessment and verification
&#149;  Ability to write proof-of-concept exploit code
&#149;  Can develop tools and scripts in various languages (e.g., Perl, 
Javascript, PHP, Python, etc.)
&#149;  Can do root cause analysis and report writing
&#149;  Can mentor and perform knowledge transfer with team members and clients
&#149;  Familiar with best-practice test methodologies
&#149;  




JOB REQUIREMENTS
---------------------------------------------------
Education and Experience:
&#149;  BS in CS, Engineering or equivalent. MS preferred
&#149;  Experience with C/C++, Java, .Net coding or code analysis
&#149;  2 - 3 Years consulting experience
&#149;  Working knowledge of source code analysis tools preferred
&#149;  Industry Experience: - Background in the Financial Services Industry 
preferred
&#149;  Assessments on multi-protocol enterprise network and application systems
&#149;  Experience using commercial and open source tools such as WebInspect, 
AppScan, and WebScarab, etc. 
&#149;  Assessments of network security products, cryptographic suites, 
firewalls, databases a plus
&#149;  Computer forensics, network exploitation, ethical hacking, penetration 
testing and tool development
&#149;  Experience in bypassing firewalls, evading intrusion detection are a 
nice-to-have
&#149;  Experience in application level attacks on higher-order functions, such 
as business logic
&#149;  Knowledge of the software development lifecycle in a large enterprise



CONTACT
---------------------------------------------------
Please write Ethical Hacker in the subject line. Email resume to 
atheodore@cigital.com.
Principles only. 


Cigital Inc.
Amy  Theodore
Senior Technical Recruiter
atheodore@cigital.com



---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [SJ-JOB] Application Security Engineer, Dulles, atheodore <=
Previous by Date:  [SJ-JOB] Sales Representative, Tampa, sales
Next by Date:  [SJ-JOB] Auditor, Poughkeepsie, jtaylor
Previous by Thread:  [SJ-JOB] Sales Representative, Tampa, sales
Next by Thread:  [SJ-JOB] Auditor, Poughkeepsie, jtaylor
Indexes:  [Date] [Thread] [Top] [All Lists]