Penetration Engineer, San Francisco
|
View:
New views
1 Messages
—
Rating Filter:
Alert me
|
 |
Penetration Engineer, San Francisco
by Phanmaly.Somsanith
::
Rate this Message:
---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY --------------------------------------------------- JOB DESCRIPTION --------------------------------------------------- Position: Penetration Engineer Location: San Francisco, California, United States Type: Permanent F/T Closing Date: 2008-12-12 The National Incident Response Team (NIRT), a National Information Technology Operation (NITO), for the Federal Reserve System delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the Federal Reserve System. As a member of NIRT’s Information Security Assessment Team, you will interact with NIRT’s customers who are located around the Federal Reserve System evaluating the security of their information systems and applications. The primary area of responsibility will be conducting information security assessments. This will include running vulnerability assessment tools and performing infrastructure and application penetration testing. Job Responsibilities: • Oversee and conduct vulnerability assessments and penetration testing; • Oversee and perform the review and analysis of security vulnerability data to identify applicability and false positives; • Prepare and distribute security assessment reports to customers; • Research and develop testing tools, techniques, and process improvements • Performs additional incidental duties as assigned. JOB REQUIREMENTS --------------------------------------------------- Job Requirements: • Bachelor degree in Information Technology/Computer Science, or related disciplines and/or equivalent work experience; • Excellent analytical skills; • Excellent interpersonal, communication, organizational, and project management skills; • Team player with excellent consultative and communication skills, and the proven ability to work effectively with client, internal management and staff, vendors and consultants; • Strong written and verbal communications skills; • Proven ability to communicate technical issues to technical and non-technical business area representatives. • Hands-on experience with commercial and open-source network and application security testing tools • Experience testing web applications for common web application security vulnerabilities as defined by OWASP including input validation vulnerabilities, broken access controls, session management vulnerabilities, cross-site scripting issues, SQL injection and web server configuration issues • Application security source code and design review • Ability to travel; • Approximately 3-5 years of experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols. • Ability to obtain US Security Clearance • CISSP certified or the ability to work towards obtaining the certification. Desired • Familiarity with application development (C, C++, .NET, JAVA); • Script-writing skills (VB, perl, PHP); • Experience developing exploits. The Federal Reserve Bank of San Francisco is an Equal Opportunity Employer. CONTACT --------------------------------------------------- To be considered for the position, please apply on-line at www.frbsf.org Please, no phone calls about this job! Federal Reserve Bank of San Francisco Phanmaly Somsanith Recruiter Phanmaly.Somsanith@... --------------------------------------------------- SECURITYFOCUS JOBS --------------------------------------------------- SecurityFocus now offers an online interface for searching and managing job opportunities and resumes. http://www.securityfocus.com/jobs |
| Free embeddable forum powered by Nabble | Forum Help |
