Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Jobs
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[SJ-JOB] Technology Risk Consultant, London

from [iain] Network Security [Permanent Link]
Subject: [SJ-JOB] Technology Risk Consultant, London
Date: 11 Jun 2007 21:49:24 -0000 
---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------


JOB DESCRIPTION
---------------------------------------------------
Position:       Technology Risk Consultant
Location:       London, , United Kingdom
Type:           Contract

Closing Date:   2007-07-10


Security Integrator

Reference No.   SF-221
Company Global Banking Group
Location        London
Rate    &pound;425/day
Start Date      ASAP
Duration        6 months (possible extension)
No. Required    1
The Role
&#149;  Subject Matter Expert on IT security across the variety of platforms.
&#149;  Lead architecture design and review sessions with IT teams to ensure 
that security is incorporated into projects at the earliest stages by 
identifying potential risks and threats as well as mitigating designs or 
controls.
&#149;  Provide specific engineering expertise into tactical project tasks. 
Such areas might include securing databases, implementing encryption, 
configuring wireless networks, etc.
&#149;  Help identify areas of infrastructure the Firm might want to invest in 
to further improve the discipline of IT security.  This could include 
commercial tools, internally developed libraries, certification courses, and so 
forth.
Skills Required*
&#149;  Strong interpersonal skills are critical, since the individual will be 
interacting with IT clients and executives around the world, and must be able 
to effect change and influence decisions.
&#149;  Platform:  Although this role is not systems administration position, 
the candidate must have deep knowledge of at least one primary operating system 
(Unix or Windows), the configuration and management of that platform, the 
security risks to that platform, and how to mitigate those risks.
&#149;  Network security:  The candidate will be expected to thoroughly 
understand the standard network model and the risks present at each layer, the 
functions of network equipment such as switches, routers, firewalls, proxies, 
and load-balancers, and to understand network architecture.
&#149;  Multi-tier application security:  Many of our most important 
applications are multi-tier applications, and the candidate will be expected to 
understand how to secure all layers of an n-tier application.  This includes 
applications incorporating web services.  
&#149;  Authentication issues:  An understanding of system authentication 
technologies (Active Directory and Kerberos in particular) and broader Identity 
Management technologies (SiteMinder, SAML, Liberty Alliance, WS-Security) is 
key.
&#149;  Across all topics, candidate should have expertise with 
security-related topics such as authentication mechanisms, data protection, 
validation checking, encryption, hashing, principle of least privilege, 
software attack methodologies, physical security, social engineering, etc. 
Genuine expertise is required here, as the candidate will be extensively tested 
on security principles.
Additional Skills*:
&#149;  Experience in financial services is highly desired.
&#149;  Security expertise in multiple operating systems is strongly preferred.
&#149;  Programming:  Experience with C/C++, Java, C# / .NET, Perl, and shell 
programming would be beneficial.
&#149;  Automated testing tools:  Experience with automated vulnerability 
assessment tools (Watchfire), or with more general purpose testing tools (such 
as Purify).
&#149;  Experience in formulating policy and ensuring compliance with 
regulatory requirements
&#149;  Experience with mainframe technologies would be beneficial.
&#149;  Database design and security issues.
&#149;  Security expertise with MQSeries.
Educational Requirements
Bachelors Degree with min 5+ yrs relevant work experience in high-paced, 
enterprise environment.

* SKILLS REQUIRED 
Skills are divided into two categories, Required and Additional. All of the 
Required skills must be present for a candidate to be considered. We do not 
require all of the Additional skills, but will give clear preference to 
candidates that demonstrate proficiency in a significant number of them.




JOB REQUIREMENTS
---------------------------------------------------
Candidates must be eligable to work in the UK when applying


CONTACT
---------------------------------------------------


Information Security Solutions
Iain Sutherland

iain@InformationSecuritySolutions.com



---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [SJ-JOB] Technology Risk Consultant, London, iain <=
Previous by Date:  [SJ-JOB] Sr. Security Analyst, Warren, nomail
Next by Date:  [SJ-JOB] Application Security Engineer, Los Angeles, dianne
Previous by Thread:  [SJ-JOB] Sr. Security Analyst, Warren, nomail
Next by Thread:  [SJ-JOB] Application Security Engineer, Los Angeles, dianne
Indexes:  [Date] [Thread] [Top] [All Lists]