Application Security Consultant - Dulles, VA

From: Jeff Combs (jeffat_private)
Date: Mon Jun 09 2003 - 07:18:32 PDT

Next message: Aaron C. Newman (Application Security, Inc.): "Application Security, Inc. in New York City is hiring a Security Researcher"

Previous message: infoat_private: "Security Sales Job - New York"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Application Security Consultant  Dulles, VA $90-$100K base salary
Travel up to 40% required. US citizens only.

Typical activities include:
Identifies technical strategies for ensuring client's software 
applications are secure.
Meeting with client's technical staff to understand the architecture of 
the application.
Software source code reviews using automated vulnerability testing tools 
and manual review of code.
Performing application security audits.
For example, an Application Security consultant may work with a Stock 
Brokerage firm to ensure their online trading application written in 
J2EE with an Oracle backend is secure from common vulnerabilities such 
as buffer overruns, cross-site scripting attacks and SQL injection attacks.

Required Experience:
Experience working as an Application Security consultant (NOT a network 
engineer) for mission critical applications for large corporate or 
government clients.
Experience assessing security issues, managing technology risks and 
interfacing with customers.
Ability to: (1) apply security principles to new technologies and a 
broad variety of environments (UNIX, Windows, Client-Server, Web, Wireless)
Experience in several of the following technical areas: C, C++, Java, 
Smalltalk, COBRA, RMI, system architecture, protocol analysis, software 
design, system analysis, and cryptography.
Strong familiarity with authentication, authorization, access control 
detection and auditing. Understand common application vulnerabilities 
including buffer overruns, cross-site scripting attacks and SQL 
injection attacks.

Bachelors degree in Computer Science, Electrical Engineering, 
Mathematics (cryptography interest), Security Engineering or Software 
Engineering. Travel to client sites is required.


-- 
Jeff Combs	
Alta Associates, Inc.
908-806-8442
908-806-8443 fax
jeffat_private
visit us at www.altaassociates.com

Next message: Aaron C. Newman (Application Security, Inc.): "Application Security, Inc. in New York City is hiring a Security Researcher"
Previous message: infoat_private: "Security Sales Job - New York"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Jun 09 2003 - 09:29:12 PDT