$500 referral fee
Penetration Testing-Application Security
No Relo (but we could assist with 2k from our fee to company)
Primary Position Responsibilities/Description:
We are currently searching for Penetration Testers for our Security Assessment Team. The position will span not only information security but physical security as well.
Required areas of knowledge for this position include but are not limited to:
EXCELLENT communication skills, both written and oral.
Developing and securing applications for use in Mobile, Windows, UNIX, or Linux environments.
Hands on experience and additional training in penetrating production networks and application environments from internal and external locations.
Background in code development, code review, and application security testing in a broad range of environments.
Web Services (eg IIS, Apache, Weblogic, WebSphere, etc.).
Code Control Systems.
Application to Database Interaction.
IT Governance Best Practices.
Other Desirable Skills:
Experience performing social engineering and physical security assessments.
Operational IT administration experience (ie vulnerability management, systems and configuration management, event aggregation and correlation, system and user provisioning, etc.).
Background performing incident response and digital forensics.
Lock picking. (I know strange)
In addition you will have an excellent grasp of technology and information security solutions over a broad area of core IT management processes (eg, Business Continuity Planning, Configuration Management, Change Management, IT Architecture and Operations).
Minimum Team Requirements:Successful candidates will need to have:
Associates/BA/BS degree with course work in Computer Science, Business IT, and other IT related degrees or equivalent experience. Higher professional certification(s) are a plus. Candidate will have several years of recent hands on technology experience in application security & development to include a track record of increasing responsibility.
Strong writing skills and the ability to turn assessment results into reports that are understandable at all levels of the client organization is required.
Ability to communicate, in person, with all levels of an organization. This includes being able to inform and/or present to non-technical audiences and translating engagement deliverables, so that they can be understood by wide ranging audiences.
A drive to self-educate and a thirst to acquire new technology knowledge, and simply be the best.