Hi Partner, Please send me resume to [email protected]
*Title :VULNERABILITY TESTER - WEB & SAP APPLICATIONS* *Duration :24 months* *Location :Houston, TX (moving to The Woodlands in October)* · *Local candidates are preferred but relocating candidates are welcome to apply* The team handles all *vulnerability assessment* - *they assess several internal applications (Web and SAP)* and test applications *manually & with automated tools. *They are looking for an *application security contractor* who is a skilled *Vulnerability Tester, with at least THREE years of relevant experience; someone very customer focused* and has *outstanding verbal communication & writing *skills *Technical Characteristics:* · *Minimum of THREE years of experience with Penetration/ Vulnerability Testing for Web and Thick-client Applications within an Enterprise environment* · Strong understanding of *Web technologies, e.g. HTTP, HTML, CSS, Forms, Database Connectivity*, etc. · Understanding of *Compliance and Regulatory requirements* such as *PCI DSS, SOX, HIPAA, *etc. · Ability to *articulate and/or train others on the “OWASP Top 10”* and related concepts · *Minimum of THREE years of programming and/or scripting in one or more of the following languages: .NET, Java, PHP, Ruby, Perl, Bash, or similar language* · *Minimum of THREE years of experience with SQL - SQL Syntax* and basic management of *MS SQL databases* · Ability to *perform Manual Web Application Vulnerability Assessments* without the use of automated tools such as web application scanners · Ability to capture and analyze *network traffic at all seven layers of the OSI model* · Have a *solid grasp of core security fundamentals and concepts* · Minimum of *THREE years of Enterprise-level security control implementations, including Network Intrusion Detection/Prevention (NIDS/NIPS), Corporate Antivirus, Enterprise Web Filtering, Data Loss Prevention, Insider-threat Mitigation, Botnet Detection, etc.* · Certifications as such is a huge advantage: GSEC, GWAPT, CISSP, GPEN, GXPEN, CISA, CISM, OSCP, OSCE *Snapshot:* · *Vulnerability Testing* · *Web Application Testing* · *SAP Testing* · *Manual Testing* · *Automated Testing Tool (such as web application scanners)* · *HTTP, HTML, CSS, Forms, Database Connectivity* · *.NET, Java, PHP, Ruby, Perl, Bash, or similar language\* · *SQL and SQL syntax* · *Capture and analyze network traffic at all seven layers of the OSI model* *Enterprise-level security control implementations* --- *With Warm Regards * *Madhu Roy* GenuineIT LLC *Certified Women Owned Business* Making IT Happen… Ph: 832 539 3475 Fax: 281-605-5969 *E-Mail* :[email protected] *Gmail *: *nandimadhu74 , madhu.genuineitllc* *YM *: madhu_recruiter Looking ahead to work with you for better Business prospects According to Bill S.1618 Title III passed by the 105th US Congress, this message is not considered as "Spam" as we have included the contact information. If you wish to be removed from our mailing list, please respond with "remove" in the subject field. We apologize for any inconvenience caused. · -- You received this message because you are subscribed to the Google Groups "SAP ABAP" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/sap-abap. For more options, visit https://groups.google.com/d/optout.
