---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Engineer
Location: Toronto, Ontario, Canada
Type: Permanent F/T
Closing Date: 2007-02-16
Security Compass is a consulting and training company that focuses on
application security. We are quickly growing and are looking for enthusiastic,
highly motivated, and creative individuals to join our practice as
consultants/trainers. We truly believe that every employee should love their
job, including flexibility, creativity, and compensation (potentially $100K+
for base and commission).
We are looking for the brightest and most enthusiastic senior security
consultants who have a proven track record of constantly exceeding client
expectations. Consultants will perform application security reviews (threat
analysis, source code review, application penetration testing) and possibly
network security reviews (not required), as well as teach classes on
information security. Consultants are encouraged to spend some time researching
the security topics and speaking at the security conferences that they are most
interested in.
Please note we are not looking for junior consultants at this time, but we do
anticipate a requirement for this later in the year and will issue a separate
posting.
JOB REQUIREMENTS
---------------------------------------------------
Non-technical
• Passion for customer service
• Proven leadership ability
• Ability to work unsupervised
• Strong communication verbal and written communication skills; able to
write reports and present in front of senior executives and large audiences
• Ability to teach classes and present at conferences on information
security
• Understanding of strategic implications of security assessments
• Willingness to learn and able to take constructive criticism
• Enthusiastic, optimistic attitude
• Any community/open-source involvement considered an asset
Technical
• Minimum of 4 year undergraduate, university degree
• At least 5 years working experience for senior position, or 2 years for
junior position, in web application security, network security, or application
development background with security experience
• J2EE or .Net experience a must
• Software development experience, including OOA&D (i.e. design patterns,
can understand UML, etc.)
• Strong knowledge of application security (OWASP, major threats)
• Understanding of Secure Software Development Lifecycle and root causes
of major application security vulnerabilities
• Code reviews, web application and/or network penetration testing
• Threat modeling
• CISSP an asset; other certifications valued as well
• Identity management experience beneficial but not required
Other
• Preference to local candidates in or around Toronto; however, any
candidate located in North America who can work in both the US and Canada will
be considered and is encouraged to apply
• Willingness to travel (50% +)
CONTACT
---------------------------------------------------
Please e-mail us at the address below. You may also find out more about
Security Compass by visiting our website http://www.securitycompass.com
Security Compass
Rohit Sethi
Manager
rohit@securitycompass.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
