Hi Partners, Please share matching profile at *naseer.ah...@nityo.com <naseer.ah...@nityo.com>*
*Skill Set* Security testing: Job Title: Sr.Manager App Pen Test Role : TTL Skill : Security testing Duration : 6months+ Location : Arlington(VA) Approx. Start date : ASAP *Work Location* Arlington(VA) *Special Instructions* NA *Job Description* Job description & skil requirements - Responsibilities: • Responsible for planning, managing, coordinating and tracking the application security test team activities with respect to security testing in the following areas o Software development lifecycle (Waterfall and Agile projects) o Change and release management o Vendor integrations • Coordinate with the Project Management Office and QA organization to ensure that appropriate security testing activities are aligned with other teams • Coordinate with the Third Party Oversight team regarding security testing and integration analysis of vendors • Coordinate with the Change management and release management teams to ensure appropriate security testing is conducted for relevant non-SDLC changes • Creation or updates of the processes and artifacts required to accurately track and measure the above activities EXPERIENCE: • 5+ years experience managing QA or security testing programs • Solid understanding of SDLC lifecycle practices including Waterfall & Agile • Exposure to vulnerability assessment and penetration best practices • Exposure to vulnerability and penetration testing techniques and tools • Exposure to development on web platforms using Java/Javascript TECHNIAL SKILLS: The ideal candidate should possess a detailed knowledge of one or more of the following technologies: • Strong knowledge of web application technologies • Manual and automated QA and security testing software • Issue management systems • Source code analysis software • Intermediate to advanced Microsoft Office Suite (i.e., Word, Excel, PowerPoint) • Linux operating systems • Microsoft technologies EDUCATION: • A degree or certificate in management information systems, mathematics, computer science or related field or 2-3 years of relevant experience ---------------------- Job Title: Application Security Penetration Tester Job description & skil requirements - Responsibilities: • Build out a comprehensive testing framework which combines internal and external testing vulnerability sources, security tools and vendor capabilities. • Collaborate with software development, system engineering and architect peers to continually improve system design, implementation and operations • Configure, run and monitor automated security testing tools • Perform manual validation of vulnerabilities • Perform manual penetration testing of client systems, web sites and networks to discover vulnerabilities • Thoroughly document exploit chain/proof of concept scenarios for internal client consumption Qualifications: EXPERIENCE: • A degree or certificate in management information systems, security, mathematics, computer science or related field or 2-3 years of relevant information security experience • Working with technical security controls • Programming experience in Python, PHP, Perl, Ruby, .NET or other interpreted or compiled languages • Familiarity with vulnerability assessment and penetration best practices • Experience with vulnerability and penetration testing techniques and tools • Desire to obtain one or more security-related certifications such as Certified Information Systems Security Professional (CISSP), GIAC Penetration Tester (GPEN), GIAC Certified Incident Handler (GCEH), Offensive Security Certified Expert (OSCE), and Offensive Security Certified Professional (OSCP) TECHNICAL SKILLS: The ideal candidate should possess a detailed knowledge of one or more of the following technologies: • Security testing tools including Metasploit, Nmap, Nessus, Burp Suite • Linux operating systems • Microsoft technologies • Mobile application programming and/or security testing • Wireless technologies • Web application technologies • Network implementation (operational and security) • Telephony Technologies (analog and IP) • Social engineering • Physical security • Source code analysis software • Intermediate to advanced Microsoft Office Suite (i.e., Word, Excel, PowerPoint) EDUCATION: • A degree or certificate in management information systems, mathematics, computer science or related field or 2-3 years of relevant information security experience 4+ years of application security penetration testing experience. Experience testing web and mobile platforms. Development experience, working knowledge of Java. Excellent analytical and debugging skills. Excellent communication skills Note: We appreciate not to see any rejects at screening stage due to poor quality. -- You received this message because you are subscribed to the Google Groups "US_IT.Groups" group. To unsubscribe from this group and stop receiving emails from it, send an email to us_itgroups+unsubscr...@googlegroups.com. To post to this group, send email to us_itgroups@googlegroups.com. Visit this group at https://groups.google.com/group/us_itgroups. For more options, visit https://groups.google.com/d/optout.
