[prev in list] [next in list] [prev in thread] [next in thread]
List: security-jobs
Subject: [SJ-JOB] Application Security Architect, Bern, Lausanne or Zurich
From: wiebke.albert () ins ! com
Date: 2005-08-25 16:54:29
Message-ID: 20050825171430.10525.qmail () securityfocus ! com
[Download RAW message or body]
---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Architect
Location: Bern, Lausanne or Zurich, , Switzerland
Type: Permanent F/T
Closing Date: 2005-09-25
International Network Services (INS) provides network consulting services and \
business solutions to help companies build, secure, and manage their complex network \
infrastructures. Its end-to-end network consulting solutions address companies’ \
needs in Next Generation Networking, Security, and Network & Systems Management, \
helping companies optimize their business to better face competitive challenges and \
meet future demands.
For further information, please go to http://www.ins.com.
The Role
Position: Ethical Hacker
Location: Bern, Lausanne or Zurich/ Switzerland
Key Responsibilities
The Ethical Hacker will be part of INS’ centralised and world-class Ethical \
Hacking Centre of Excellence (COE) focusing on the development and delivery of \
Ethical Hacking Services. The Ethical Hacker INS Switzerland is looking for will be \
identifying vulnerabilities in our clients’ network or applications that have a \
potential impact on the company, providing business-oriented solutions for \
remediation. Also, he/she will be utilising INS’ structured Security and Network \
Engagement Methodologies (NEM), working on a dedicated team of INS Ethical Hackers \
simulating attacks on clients’ networks in a controlled and safe manner to \
provide a real-life snapshot of the effectiveness of their security controls.
Duties may include:
• Web Application Vulnerability Testing
Utilises a customised process to conduct Ethical Hacking assessments of web-based \
applications
• VPN Vulnerability Testing
Applies a three-phased approach in an attempt to discover, identify, and penetrate \
the VPN as well as identify weaknesses in the VPN configuration
• External Network Vulnerability Testing
Attempts to penetrate your Internet firewall infrastructures as well as surrounding \
network systems
• Internal Network Vulnerability Testing
Provides you with a thorough understanding of how vulnerable your internal \
infrastructure is to threats such as disgruntled employees, hackers who gain access \
to the building, and former employees with “lingering” access
• Wireless Vulnerability Testing
Utilises a three-phased approach to identify vulnerabilities within an 802.11 \
wireless network
• War Dialing
Attempts to identify unauthorised modems that enable dial-in that bypasses your \
firewalls and filtering routers
• Pre-sales participation and training of client staff such as performing \
“live hacks”
JOB REQUIREMENTS
---------------------------------------------------
Skills
Communications
• Solid written and oral communication
• Technical and business writing
• Analytical interviewing
• Effective listening
• Presentation development and delivery
Engagement Management
• Understanding of best-practice methodologies
Business Development
• Opportunity Identification in close cooperation with the INS sales team
• Ability to articulate components of INS’ security consulting offering as \
well as of INS’ associated services • Capability of writing and delivering \
sales presentations and scopes of work Specific Technical Skills
• Penetration Testing tools: Dsniff, Ethereal, Nessus, N-Stealth, Netcat, Nmap, \
tcpdump, WebCracker, Whisker, etc. • Operating Systems
• Security Technology: Firewalls, IDS/IPS, VPN, PKI, etc.
• Network Protocols
• WAN expertise
• Programming skills: C, C++, Assembler, Perl
Experience
• Very strong knowledge of Computer Forensics, Network and Web application \
exploitation, Ethical Hacking, Penetration Testing and toold development • \
Expert level experience in bypassing firewalls, evading intrusion detection • \
Extensive technical experience in Network Security products, Cryptographic suites, \
Firewalls • Demonstrable experience in UNIX and Windows administration
• Solid experience in application level attacks
• Knowledge of the software development lifecycle in a large enterprise
• At least 2 years of experience in Penetration Testing
Education
• Computer Science or related technical degree from an accredited institution or \
equivalent work experience and practical knowledge • CISSP and/or GIAC are \
preferable
Personal Characteristics
• Self starter
• Naturally inquisitive
• Ability to inspire and motivate
• Results-oriented and able to present at senior level
• Ability to focus on priorities
• Fluent German, English and preferably French language skills
• Swiss citizen, EU citizen or Swiss work permit holder with proven track record \
in Switzerland preferred • Willingness to travel is a MUST
CONTACT
---------------------------------------------------
Please send an English copy of your CV to our Recruitment Manager Europe, Ms Wiebke \
Albert (wiebke.albert@ins.com).
International Network Services
Ms Wiebke Albert
Recruitment Manager Europe
wiebke.albert@ins.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic