VP - PENETRATION TESTING / ETHICAL HACKING
Bottom Line ~ In A Nutshell:
- Penetration Testing (Manual) / Ethical Hacking experience
- Security Vulnerability
- Technical skills in scripts languages- Pearl, etc
- Be able to Hack web based applications and assess risk and vulnerabilities
- Java, Java script, HTML experience
- Application Development skills
- Strong communication skills
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Penetration Testing/Ethical Hacking
Charlotte, Chicago, Addison, TX; DC, Denver, possibly Jacksonville
Penetration Testing/Ethical Hacking
Position Type: Direct Hire
Client: A Fortune 500 company that touches and enhances the lives of millions globally daily!
**Candidate referral program-get 2500. moneiy for referring others to RED SKY Consulting -- details below, at end of job description. *
Bottom Line ~ In A Nutshell:
- Penetration Testing (Manual) / Ethical Hacking experience
- Security Vulnerability
- Technical skills in scripts languages- Pearl, etc
- Be able to Hack web based applications and assess risk and vulnerabilities
- Java, Java script, HTML experience
- Application Development skills
- Strong communication skills
Candidate will have the desire to join a dynamic team of world class security experts to conduct application security assessments/penetration tests of our internal/external web, mobile, & web service applications leveraging both manual techniques as well as automated tools, in order to uncover and report security vulnerabilities that exist. Candidate must be knowledgeable with business risks associated to common security vulnerabilities and be able to effectively communicate security vulnerabilities to application developers and/or senior managers who may have little to no experience with application security vulnerabilities. Ability to work independently in a very large-scale, enterprise setting. Previous experience as an application security professional within a large Financial Institution a plus.
Job Requirements
BS/MS in Computer Science (or relevant work experience in large scale IT environment)
At least 3 years of experience conducting vulnerability assessments, code reviews and penetration tests against web/mobile application technologies, services, platforms and languages to find flaws and exploits (e.g., SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Authentication/Authorization, Privilege Escalation, and Business Logic Bypass, OWASP Top 10, SANS top 25, etc.)
Ability to demonstrate manual web application testing experience; i.e. candidate must be able to simulate a SQL inject/Cross-site script attack without the use of tools.
Expert level experience with web application vulnerability scanning tools (e.g. IBM AppScan, HP Webinspect, Accunetix, NTO Spider, Burpsuite Pro, etc.)
Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, HTTP/HTTPS, REST, Cookies)
Experience with vulnerability assessment tools and penetration testing techniques. (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions (i.e. BackTrack/Kali), static source code analyzers, SoapUI, etc.)
Experience penetration testing on mobile platforms such as iOS, Android, Windows & RIM
Solid programming/debugging skills with proficiency in one or more of the following; Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C
Expert-level experience and very detailed technical knowledge in at least three of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services.
Demonstrated ability to learn and apply critical thinking to a variety of situations
Desired Skills:
Technical Skills:
One or more of following certifications: CISSP, GWAPT, C|EH, OSCP or qualified work experience
Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript)
Experience as a developer a plus
Mobile programming abilities, such as Xcode, Objective-C a plus
Knowledge of Structured Query Language a plus.
Soft Skills:
Strong teamwork skills
Effective written and oral communication skills
Ability to multi-task and handle multiple projects
Ability to work in a fast paced, challenging environment
--------------------------------------------------------
When you send a resume to manager, please add the following:
- Manager name
- Job Title
- Current comp
- Desired comp
- Why looking for a new role
- Location desired
- Any other comments I need to know
- Must Have:
- Penetration Testing (Manual) / Ethical Hacking experience
- Security Vulnerability
- Technical skills in scripts languages- Pearl, etc
- Be able to Hack web based applications and assess risk and vulnerabilities
- Java, Java script, HTML experience
- Application Development skills
- Strong communication skills
Selling Points:
- Candidates will be hired with a title of VP
- 4 weeks vacation + 2 personal days and 10 sick days per year
- Over 3,000 people in Information Security at the Bank. Career opportunities are endless
- Excellent 401K
- Stress career development, conference attendance and continual learning
THIS IS A GREAT OPPORTUNITY WITH A FIRST-CLASS COMPANY
Penetration Testing/Ethical Hacking
RED SKY Career Opportunities at: http://bit.ly/2I4maRa
RED SKY Consulting Candidate and Client Referral Program!
2500
Do you know other IT professionals?
Turn those relationships into Moneiy (misspelled intentionally) & help friends get work
RED SKY Consulting is offering a fantastic opportunity for you to earn extra moneiy.
If you refer to us a Manager of people or skilled professionals, we will link your name to that person for 18 months.
If we employ or place that individual or place people into that company thru that manager
then we will pay 2500!
Penetration Testing/Ethical Hacking
by via developer jobs - Stack Overflow
No comments:
Post a Comment