Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Jobs
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[SJ-JOB] Penetration Engineer, Wilmington

from [nagaraj . s . kedda] Network Security [Permanent Link]
Subject: [SJ-JOB] Penetration Engineer, Wilmington
Date: 18 Jul 2007 18:29:46 -0000 
---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------


JOB DESCRIPTION
---------------------------------------------------
Position:       Penetration Engineer
Location:       Wilmington, Delaware, United States
Type:           Permanent F/T

Closing Date:   2007-07-28

The Corporate Internet Group (CIG) supports public Internet sites for all lines 
of business within J. P. Morgan Chase. CIG is comprised of over 400 
professionals located in Delaware, New York, Ohio, Florida and Illinois. The 
group consists of senior business strategists, developers, infrastructure and 
architecture specialists, information architects, usability professionals, 
interactive designers, editors and other project support and operations staff. 
CIG works closely with all lines of business including: Auto Lending, Business 
Banking, Card Services, Commercial Banking, Education Finance, Home Lending, 
Investing, Private Bank, Private Client Services, Retail and Treasury.  J.P. 
Morgan Chase&#146;s online sites are currently among the top ranked in the 
industry. CIG&#146;s goal is to provide consistent, integrated internet 
applications that are intuitive, dependable and easy to use for all customers.
 
JPMorgan Chase Ethical Hacking team main focus is on the development and 
delivery of vulnerability assessment, penetration testing, secure code review 
and PCI scanning services. He/she will be utilizing and helping to continually 
develop our testing methodology while working on a dedicated team of Ethical 
Hackers that simulate attacks on applications and networks in a controlled and 
safe manner to provide a real-life snapshot of the effectiveness of their 
security controls. 
Security scans and Vulnerability assessments  - Black box, Grey box, White box 
Perform source code reviews to identify any security vulnerabilities 
Penetration testing against development and production systems - Black box, 
Grey box, White box 
Configuration and Operation of scanning and testing tools 
Documentation of test results 
Recommendation of countermeasures and remediation techniques 
Vulnerability and Penetration Testing; Network Security Analysis; Server 
Hardening; CISSP certification is Preferred; CEH is required 


JOB REQUIREMENTS
---------------------------------------------------
Very strong knowledge of Network and Web application exploitation, Ethical 
Hacking, Penetration Testing, Computer Forensics, and tool development 
Expert level experience in bypassing firewalls, evading intrusion detection 
Extensive technical experience in Network Security products, Cryptographic 
suites, Firewalls, application servers, routers, IDS systems 
Demonstrable experience in UNIX and Windows administration 
Solid experience in application level attacks including "Web 2.0" technologies 
Familiarity with common vulnerabilities in major operating systems (i.e., Unix 
and Windows) and ability to follow the emergence of new exploitation techniques 
Knowledge of the software development lifecycle in a large enterprise 
5 to 10 years experience with network security testing, server hardening, 
vulnerability scanning tools and penetration testing techniques 
Programming ability or development experience in at least one of the following 
languages: .NET (ASP.NET) and JAVA (JSP, Applets and EJB), Perl, Python, Ruby, 
C/C++ would be a plus 
Experience using and debugging build environments (MS Solution files, MS 
Project files, Make Files and ANT build scripts) 
Computer Science or related technical degree from an accredited institution, or 
equivalent work experience and practical knowledge 
At least one professional certification - CISSP, CISM, MCSD, GIAC are preferable
Solid written and oral communication 
Technical and business writing 
Analytical interviewing 
Effective listening 
Presentation development and delivery 
Experienced with MS Word, Excel, PowerPoint  
US Citizenship or Permanent Residence status is required 


CONTACT
---------------------------------------------------
Visit careers.jpmorganchase.com and search for this job requisition number 
070027555.  Bank's Recruiter will process all postings.

JPMorgan Chase
Nagaraj Kedda
Sr. Information Risk Director
nagaraj.s.kedda@jpmchase.com



---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [SJ-JOB] Penetration Engineer, Wilmington, nagaraj . s . kedda <=
Previous by Date:  [SJ-JOB] Security Architect, Roseland, tracy_genovese
Next by Date:  [SJ-JOB] Sr. Security Engineer, Omaha, dee
Previous by Thread:  [SJ-JOB] Security Architect, Roseland, tracy_genovese
Next by Thread:  [SJ-JOB] Sr. Security Engineer, Omaha, dee
Indexes:  [Date] [Thread] [Top] [All Lists]