SECURITYFCUS JBS - NEW PPRTUNITY
JB DESCRIPTIN
Position: Security Consultant
Location: Seattle, Washington, United States
Type: Permanent F/T
Closing Date: 2007-03-11
CMPLETE STRATEGIC CNSULTING FR A WIRELESS WRLD
VeriSign’s market-leading portfolio of managed communications and content offerings, combined with inCode’s expertise in wireless business and technology consulting services, enables companies to launch compelling services for their customers that drive new revenue streams and improve customer loyalty.
inCode’s greatest strength is its talented staff of seasoned, multilingual, best-in-class professionals. Working inside wireless operations in Europe, Asia and the Americas, inCode consultants apply objective expertise and proprietary tools to mission-critical projects. From the drawing board to implementation, expert teams at inCode deliver unparalleled service. They effectively manage the lifecycle of every project to ensure client needs are successfully met.
inCode has earned a reputation as a trusted advisor and business partner to some of the world’s most influential brands in telecom and the enterprise, including: AT&T, Bell Canada, China Unicom, Cingular, Comcast, DoCoMo, Huawei, Lucent, Motorola, Nokia, Savi Technology, Siemens, Sprint/Nextel, Staples, T-Mobile, The Home Depot, Toyota, Verizon and Vodafone. Many inCode clients return year after year convinced that inCode is the most knowledgeable wireless consulting firm in the world.
We are seeking a motivated and knowledgeable Application Security Consultant.
Individual may have other roles assigned as needed, but focus will be on web and black box application security testing. Job requires a strong information security, privacy, and risk management background along with excellent written, verbal, and presentation skills. Some travel required.
JB REQUIREMENTS
Requirements:
' 3+ years of direct experience with application testing.
' Deep familiarity with core application testing principles.
' In depth understanding of TCP/IP fundamentals.
' Solid understanding of programming languages used in common application environments. Knowledge of and ability to review code of both script languages (i.e. HTML, Javascript, PHP, Perl, ASP, etc.) and compiled languages (i.e. Java, C/C++) is essential.
' Strong knowledge of network infrastructure design principles including routers, firewalls, proxies, IDS and load balancing devices.
' Comprehension of at least one major development platforms (i.e. .Net, J2EE, ColdFusion) ' Knowledge of common web server platforms and underlying operating systems.
' Experience using common freely available security scanners and proxy tools.
' Experience with commercial web application testing tools a plus.
Experience - External:
' A passion for Information Security.
' The ability to think 'outside the box' and formulate complex security test cases.
' Working knowledge of application exploitation including implementing Cross Site Scripting and SQL injection attacks, as well as remediation procedures for addressing any issues.
' The capability to work in diverse teams and independently.
' Possess industry certifications such as CISSP or GIAC.
' 4 year college degree
CNTACT
Please email your resume to ehanselman (AT) verisign (DOT) com.
Ericka Hanselman
ehanselman (AT) verisign (DOT) com
SECURITYFCUS JBS
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.