---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security Consultant
Location: Seattle, Washington, United States
Type: Permanent F/T
Closing Date: 2007-03-11
COMPLETE STRATEGIC CONSULTING FOR A WIRELESS WORLD
VeriSign’s market-leading portfolio of managed communications and content
offerings, combined with inCode’s expertise in wireless business and
technology consulting services, enables companies to launch compelling services
for their customers that drive new revenue streams and improve customer loyalty.
inCode’s greatest strength is its talented staff of seasoned,
multilingual, best-in-class professionals. Working inside wireless operations
in Europe, Asia and the Americas, inCode consultants apply objective expertise
and proprietary tools to mission-critical projects. From the drawing board to
implementation, expert teams at inCode deliver unparalleled service. They
effectively manage the lifecycle of every project to ensure client needs are
successfully met.
inCode has earned a reputation as a trusted advisor and business partner to
some of the world’s most influential brands in telecom and the enterprise,
including: AT&T, Bell Canada, China Unicom, Cingular, Comcast, DoCoMo, Huawei,
Lucent, Motorola, Nokia, Savi Technology, Siemens, Sprint/Nextel, Staples,
T-Mobile, The Home Depot, Toyota, Verizon and Vodafone. Many inCode clients
return year after year convinced that inCode is the most knowledgeable wireless
consulting firm in the world.
We are seeking a motivated and knowledgeable Application Security Consultant.
Individual may have other roles assigned as needed, but focus will be on web
and black box application security testing. Job requires a strong information
security, privacy, and risk management background along with excellent written,
verbal, and presentation skills. Some travel required.
JOB REQUIREMENTS
---------------------------------------------------
Requirements:
' 3+ years of direct experience with application testing.
' Deep familiarity with core application testing principles.
' In depth understanding of TCP/IP fundamentals.
' Solid understanding of programming languages used in common application
environments. Knowledge of and ability to review code of both script languages
(i.e. HTML, Javascript, PHP, Perl, ASP, etc.) and compiled languages (i.e.
Java, C/C++) is essential.
' Strong knowledge of network infrastructure design principles including
routers, firewalls, proxies, IDS and load balancing devices.
' Comprehension of at least one major development platforms (i.e. .Net, J2EE,
ColdFusion) ' Knowledge of common web server platforms and underlying operating
systems.
' Experience using common freely available security scanners and proxy tools.
' Experience with commercial web application testing tools a plus.
Experience - External:
' A passion for Information Security.
' The ability to think 'outside the box' and formulate complex security test
cases.
' Working knowledge of application exploitation including implementing Cross
Site Scripting and SQL injection attacks, as well as remediation procedures for
addressing any issues.
' The capability to work in diverse teams and independently.
' Possess industry certifications such as CISSP or GIAC.
' 4 year college degree
CONTACT
---------------------------------------------------
Please email your resume to ehanselman@verisign.com.
Ericka Hanselman
ehanselman@verisign.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
