Sr. Information Security Scientist for Risk Assessments - IL - #510

From: Jeff Combs (altaassociates6at_private)
Date: Thu Aug 01 2002 - 13:12:48 PDT

Next message: sbodmerat_private: "Immediate Opening in the DC Metro Area"

Previous message: Ben Weber: "REVISED JOB DESCRIPTION for: (2) Information Security Scientist r oles for Risk Assessments - One Junior, One Senior - Located in IL - Grey thorn"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Title: Sr. Information Security Scientist for Risk Assessments
Our job reference #510
Location: Chicago, IL
Salary: $90k - $110k

Responsibilities:

Implement and fine-tune enterprise wide risk assessment, vulnerability
research, and incident response services (develop process/methodology,
infrastructure/technology tools, skills, knowledge base, documentation,
resources, etc.).

Execute the risk assessment process for new IT infrastructure
development projects and existing production systems and applications on
a continuous basis (Includes penetration testing and vulnerability
assessment versions of the risk assessment process).

Execute the vulnerability research process on a continuous basis.

Assist with the development and execution of the incident response
(CIRT) process.

Qualifications:

In depth hands-on experience in as many of the following technologies as
possible:

· Built-in operating system security services & functions: NOKIA IPSO,
Sun Solaris, MS Windows NT and Windows 2000, IBM AIX, IBM AS/400, S/390,
Cisco IOS, Foundry OS or others.

· Built-in application security services & functions: Oracle, DB/2, MS
Active Directory, iPlanet LDAP, MS IIS, MS Integration Server, MS
Exchange, IBM WebSphere, SAP R/3, MS BizTalk Server or others.

· Application development & execution framework security functions: Sun
J2EE, MS COM+, MS .NET, OMG’s CORBA, or others.

· Vulnerability assessment tools: ISS Internet Scanner, ISS Host
Scanner, Nessus, McAfee CyberCop, or others.

· Computer & electronic equipment forensics tools.

Core-Competencies:

· IPC – Inter-Process Communications
· Kernel Concepts (Exception Handling on NT vs. Unix, Interrupt Schemes,
etc…)
· Low-Level Network Programming (Raw Sockets, libpcap, winpcap, etc…)
· Strong Debugging Skills
· Strong Reversing Skills
· Strong Web Programming Skills

Minimum of 5 years experience in information security solution
engineering and security service delivery.

BS in Computer Science or equivalent technical degree required.

Experience in leading penetration testing, risk and/or vulnerability
assessment engagements required.

Consulting industry background and experience a strong plus.

Stellar technical writing, documentation development, and visual
communication skills.

Excellent interpersonal and verbal communication skills.

*******
Contact:

Jeff Combs
Alta Associates, Inc.
Phone: 908-806-8442
e-mail: jeffat_private
www.altaassociates.com

Next message: sbodmerat_private: "Immediate Opening in the DC Metro Area"
Previous message: Ben Weber: "REVISED JOB DESCRIPTION for: (2) Information Security Scientist r oles for Risk Assessments - One Junior, One Senior - Located in IL - Grey thorn"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Aug 02 2002 - 11:06:21 PDT