*Penetration Tester in TX for 6+ Months Contract !!* Title: Penetration Tester Location: North Houston, TX Duration: 6+ Months
*Please reply to my Official id : **rachel.l...@itbtalent.com <rachel.l...@itbtalent.com>* SECURITY SUBJECT MATTER EXPERT •Minimum 3 years MANUAL penetration/vulnerability testing for web and thick-client applications in an enterprise environment •Ability to perform manual web application vulnerability assessments without the use of automated tools such as web application scanners •Full grasp and ability to articulate and/or train others on the “OWASP Top 10” and related concepts •Understanding of compliance and regulatory requirements such as PCI DSS, SOX, HIPAA, etc. •Ability to capture and analyze network traffic at all seven layers of the OSI model, including ability to discern whether said network traffic contains vulnerabilities and/or sensitive data •Strong understanding of web technologies, e.g. HTTP, HTML, CSS, Forms, Database Connectivity, etc. •Minimum 3 years of experience with programming and/or scripting in one or more of the following languages: .NET, Java, PHP, Ruby, Perl, Bash, or similar language •Minimum 3 years of experience with SQL, including a strong understanding of SQL syntax and the ability to perform basic management of MS SQL databases •Have a solid grasp of core security fundamentals and concepts, including knowing one’s system, defense in depth, the principle of least privilege, access control, encryption and cryptography, security architecture and design, business continuity and disaster recovery, etc. •Minimum 3 years of experience with enterprise-level security control implementations, including Network Intrusion Detection/Prevention (NIDS/NIPS), Corporate Antivirus, Enterprise Web Filtering, Data Loss Prevention, Insider-threat Mitigation, Botnet Detection, etc., as well as demonstrable knowledge of the principles and techniques used to bypass said controls. •Ability to create extremely high quality written reports containing the findings from web and thick-client vulnerability assessments, as well as the ability to articulate those findings to peer technical staff as well as various levels of management •Preference is for candidates with two or more of the following certifications: GSEC, GWAPT, CISSP, GPEN, GXPEN, CISA, CISM, OSCP, OSCE Regards, Rachel Lian - Staffing Manager Desk No :201-855-4204 rachel.l...@itbtalent.com Princeton - New Jersey 08540 www.itbrainiac.com ***************************************************************************************************************************************************************** Notice: This email contains confidential or proprietary information which may be legally privileged. It is intendewed only for the named recipient (s). If an addressing or transmission error has misdirected the email, please notify the author by replying to this message by "REMOVE". If you are not the named recipient, you are not authorized to use, disclose, distribute, copy, print or reply on this email, and should immediately delete it from your computer system. domain if required -- You received this message because you are subscribed to the Google Groups "SAP BASIS" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-basis+unsubscr...@googlegroups.com. To post to this group, send email to sap-basis@googlegroups.com. Visit this group at http://groups.google.com/group/sap-basis. For more options, visit https://groups.google.com/d/optout.
