Nabble - Computer Security Jobs

Sr. Security Analyst, Dallas

2008-10-10T11:25:16Z

Security System Administrator, Eagan

2008-10-10T11:25:16Z

Information Assurance Engineer, San Diego

2008-10-10T11:25:15Z

Information Assurance Engineer, San Diego

2008-10-10T11:25:15Z

Security Consultant, London

2008-10-10T11:25:15Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Security Consultant
Location: London, , United Kingdom
Type: Permanent F/T

Closing Date: 2008-11-10

Experienced information security risk professional wanted to join services firm on full time basis to perform security threat assessment and risk analysis audits and policy gap analyses for established blue-chip clients. Candidate must be seasoned, mature, information security professional with solid experience in security threat assessment and risk analysis tools and methodology. Well versed in security policy (network and user) compliance auditing, the role will be responsible for assisting clients in identifying technological and operation security threats and associated risks to their networks and recommending remedial measures. Additionally, the role shall be responsible for conducting gap analyses for clients against established security policies, legislation, regulation and standards.

JOB REQUIREMENTS
---------------------------------------------------
Preferred Candidate Profile:
 Client facing
 5-10 years security policy compliance auditing experience
 Security threat assessments & risk analyses methodology experience
 Operational policies, standards and procedures auditing
 Communication, training, briefings and instructor
 Strong written and verbal communication skills

Experience in the following areas strongly preferred:

 BSI & ISO Requirements
 PCI DSS Requirements
 Data Protection Act
 Freedom of Information Act
 CoBit, COBRA and current auditing tools

CONTACT
---------------------------------------------------
Send CV in confidence to:

Opportunities
Orthus
31 Southampton Row
London
WC1B 5HJ

opportunities@...

Orthus
Richard Hollis
Managing Director
opportunities@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Security Engineer, Milwaukee

2008-10-10T11:25:15Z

Sales Engineer, Worcester

2008-10-10T11:25:15Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Sales Engineer
Location: Worcester, , United Kingdom
Type: Permanent F/T

Closing Date: 2008-11-09

We are a young IT Security company www.encription.co.uk specialising in penetration testing. We are looking for an enthusiastic indvidual who ideally has both sales and IT security experience. We are willing to provide training in either area for the right person, who should be ambitious, able to work on their own, be willing to learn and use their initiative. This is a junior post to start with but can grow very quickly for the right person.

JOB REQUIREMENTS
---------------------------------------------------
A knowledge of IT Security and networks and/or
some selling experience with a proven track record.

Ideally based in Worcestershire, but we sell countrywide and will therefore consider a home based position.

We require excellent report writing and communication skillls, including presentations.

Must want to be in sales.

CONTACT
---------------------------------------------------
In the first instance send CV with reelvant experience and details to tony@...

encription limited
Tony McDowell
Managing Director
tony@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Security Researcher, France

2008-10-10T11:25:14Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Security Researcher
Location: France, , France
Type: Permanent F/T

Closing Date: 2008-11-10

FrSIRT seeks Exploit Writers to work from our Montpellier, FRANCE, offices. We wan offer a relocation package and assist you in getting a French work permit.

FrSIRT (French Security Incident Response Team) is a security research organisation providing real-time vulnerability alerting services and security testing tools which help IT professionals to improve their security, prioritize resources, cut time and costs, and stay ahead of the latest threats. FrSIRT customers include prominent worldwide corporations, organizations, and managed security service providers, as well as medium sized business in consulting, financial, government, healthcare, insurance, manufacturing, retail and technology.

JOB REQUIREMENTS
---------------------------------------------------
You will work on a team of highly motivated reverse engineers and security researchers, and will be responsible for quickly developing PoC (proof-of-concept) and fully-functional exploit codes after disassembling and locating vulnerabilities in binary patches and closed source applications.

Additionally, you will be responsible for analyzing and fuzzing common software applications and network services to discover new vulnerabilities.

Candidate must have the ability to work as part of a team as well as independently, and must recognize and deal appropriately with confidential and sensitive information.

Required Knowledge and Skills
-------------------------------

- Relevant experience in exploit development and vulnerability research is a must
- Relevant experience in reading and debugging assembly
- Relevant experience with OllyDbg or WinDbg, IDA Pro, SoftICE, BinDiff, eEye Binary Diffing Suite, WinDasm, or similar disassembler
- In-depth knowledge of the inner-workings of operating systems in general and MS Windows specifically
- In-depth knowledge of advanced programming languages e.g. C/C++, Perl, or Python

Preferred Qualifications
------------------------

- Experience with open or closed source fuzzing or fault injection frameworks is a plus

CONTACT
---------------------------------------------------
To apply for this position, please email your resume to careers@...

FrSIRT
FrSIRT -

team@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Software Engineer, Alpharetta

2008-10-07T14:32:39Z

Sales Representative, Linthicum

2008-10-07T14:32:39Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Sales Representative
Location: Linthicum, Maryland, United States
Type: Permanent F/T

Closing Date: 2008-11-06

Ciphent is currently seeking an Inside Sales Representative to help reach targeted revenue goals. The overarching responsibility for this role is to generate and qualify new business prospects through teleselling information security products and services during both inbound and outbound sales calls. The successful candidate will be expected to make a high volume of telesales calls daily, requiring rigorous qualification and vigilance in entering information uncovered during calls into a sales system.

The Inside Sales Representative must be proficient in identifying and pursuing new business opportunities. He or she must possess superior mental dexterity and professional judgment that only comes with meaningful experience in similar roles.
Qualified candidates must be comfortable with a commission-based reward structure and will be self-motivated, assertive and results-driven.
What will I be doing?
• Leading and facilitating sales initiatives
• Teleselling – making at least 200 calls per day
• Seeking out and qualifying new business leads
• Winning new business
• Building telephone relationships across a number of organizational levels to target high-potential customers.
• Soliciting for repeat business from existing clients
• Meeting or exceeding activity metrics and standards according to specific timeframes (i.e. daily, weekly, monthly, quarterly, annually)
• Collaborating with members of the Sales Team
• Benchmark campaign response rate based on result, methodology, and cost
• Reporting sales strategies and pipeline regularly to the CEO
• Helping cultivate, hire, supervise, evaluate, and train other Members of the Sales Team
• Communicating value propositions to clients that speak intimately to their needs and requirements
• Overseeing account management development
• Identifying trends and triggers
• Uncovering, identifying, certifying, and documenting customer data into a sales tracking system
• Collaborate with support resources
• Providing input for sales and marketing materials

JOB REQUIREMENTS
---------------------------------------------------
What do I need to have to apply?
• Demonstrated track record of success working in a business development capacity
• At least 2 years of business-to-business lead development, telemarketing or telesales experience in the technology industry
• Ability to work independently and/or on a Team
• Fundamental understanding of security threats, solutions, security tools or network technologies
• Familiarity with a variety of security concepts, compliance regulations, practices, and procedures.
• Demonstrated ability to uncover, qualify, and develop new business leads, as well as build relationships
• Professional sales training preferred
• Demonstrated ability to develop a new business leads and build relationships
• Knowledge and experience with security product installation and upgrades
• Proficiency in delivering sales presentations over the phone
• Experience using e-meeting applications
• Superior verbal and written communication skills
• Highly organized

CONTACT
---------------------------------------------------
What’s in it for you?
• An opportunity lead Teams on large-scale engagements
• Competitive Salary
• Full Medical, Dental and Vision insurance (optional)
• 401(k)
• Paid Holidays / Floating Holidays
• Generous Vacation
• Aggressive Bonuses and Reviews

About the Firm
Ciphent is a private company headquartered in the Baltimore/Washington Metropolitan area and has over 150 clients ranging from 2 million to 20 billion in annual revenue. Our suite of software development, security, consulting, and educational business services enable government and private industry organizations to innovate and reduce cost by leveraging innovative technology solutions. Please check out our web site for more information on the company and our current opportunities.

Email or fax Hillary at Careers@... or 443-378-7048 for more information. We look forward to speaking with you!

Ciphent, Inc.
Hillary Herlehy

careers@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Security Engineer, Cupertino

2008-10-07T14:32:39Z

Sales Representative, Mississauga

2008-10-07T14:32:38Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Sales Representative
Location: Mississauga, Ontario, Canada
Type: Permanent F/T

Closing Date: 2008-11-02

INSIDE SALES REP. POSITION OPEN
Contego is looking for an entry level Inside Sales Rep. responsible for selling security solutions to
Canadian organizations. Details Below:
Location: Mississauga, ON, CANADA
Job Category: Inside Sales
Number of Positions: 1
Email your resume: careers@...
With offices across Canada, Contego Information Security represents a highly focused professional
services practice committed to IT Risk and Compliance Management engagements. Partnering with our
clients, we identify the most critical risks associated with their business and IT infrastructure. Contego
then provides holistic solutions for effective IT risk mitigation and compliance management.
Job Description:
• Entry level position responsible for selling security solutions to medium size companies.
• Sourcing potential customers.
• Performing initial interest calls and conducting sales presentations.
• Responsible for the end to end process of sourcing leads in a territory, cold calling, qualifying
leads, sales presentation, offering, closing the sale and follow up.
• Responsible for meeting and exceeding predetermined sales targets.

JOB REQUIREMENTS
---------------------------------------------------
ob Qualifications:
• Self‐motivated.
• Solid work ethic.
• Well organized and attentive to detail.
• Excellent time management skills.
• Strong initiative and the ability to think on your feet.
• Proven ability and record of meeting and exceeding sales targets.
• Excellent verbal and written communication skills.
• Ability to work in a fast paced environment.
• Team player.
• Previous call centre/outbound sales experience preferred.
• High school diploma or equivalent required. College/University education preferred.
• Flexible with working hours ‐ must be willing to work some overtime.
• Available to start immediately.
Job Details:Hours: Monday to Friday 8:30am to 5:00pm

CONTACT
---------------------------------------------------
careers@...

Contego
Mary Zoric
Reception
mzoric@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Security Consultant, Newark

2008-10-01T12:21:43Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Security Consultant
Location: Newark, New Jersey, United States
Type: Permanent F/T

Closing Date: 2008-10-26

BT is one of Europe's leading providers of communications services, with over 21 million corporate and residential customers in the UK alone. Principal activities include local, national and international telecommunications services, higher-value broadband and Internet products and services, as well as IT solutions.

BT Global Services is BT’s business communications division, providing a complete range of integrated communications and IT services to customers world-wide. Specialization is flexible and innovative services to fulfill customers' end-to-end communication needs with maximum clarity and control. Focus is on multi-site organizations in Europe, US and Asia Pacific with substantial European operations.

Division: Managed Security Solutions Group
Location: Anywhere in the US

Travel: Variable (domestic)
Telecommuting / Work from home opportunity / Virtual office

Position:
Ethical Hacker / Penetration Tester

Job Description:
The Ethical Hacker / Penetration Tester will be working individually and in teams. This individual will be performing network and web application ethical hacking assessments on multi-protocol enterprise network and application systems.
Duties may include:
• Requirements analysis and design
• Scoping of testing activity
• Vulnerability assessment
• Tools/script testing
• Troubleshooting
• Physical security audits, logical security audits, logical protocol and traffic audits
• Training of client staff
Engagement Management
• Understanding of best-practice methodologies
Business Development
• Opportunity Identification
• Ability to articulate components of the BT security consulting offering as well as of the BT associated services
Specific Technical Skills
• Desktop/Network Operating Systems: Windows, HP-UX, Linux, Solaris, AIX, etc.
• Specific proxying tools such as Paros, Burp, Spike, Achilles "fault injection"
• Commercial tools like Watchfire's AppScan, SPI Dynamics' WebInspect, Kavado's Scando, Cenzic's Hailstorm, Application Security Inc.'s AppDetective, freeware tools like Whisker and Nikto; Web Servers like Apache, IIS mention of WebServices like XML, SOAP mention of web products like Siteminder, Entrust getaccess, RSA Cleartrust
• Security Scanners: Nessus, nmap, Retina, Appscan
• Web application architecture
• Management Systems
• Physical/Data Link Layer

JOB REQUIREMENTS
---------------------------------------------------
Job Requirements:

Consulting Skills

• Independence: self-directed
• Teamwork
• Client Satisfaction: Takes responsibility for ultimate client project satisfaction
• Company Representation

Technical Skills

• Strong web application penetration testing experience is a requirement
• Solid network penetration testing experience is a plus
• Security background (penetration testing, C++, XML, and PERL programming knowledge)
• Technical knowledge in network security products, cryptographic suites, firewalls a plus
• Knowledge of computer forensics, network exploitation, ethical hacking, penetration testing and tool development
• Experience in bypassing firewalls, evading intrusion detection are a nice-to-have
• UNIX and Windows administration
• Experience in application level attacks
• Knowledge of the software development lifecycle in a large enterprise environment

Education and Certifications:
Bachelors Degree in Information Technology/Computer Science or 5 years IT experience
Any of the following certifications: CISSP, GIAC, CEH certifications
Benefits and Training
BT is an employee-oriented company that offers a collaborative environment for consultants to work in. BT offers training, both internally and externally to our consultants through Webinars, training classes, seminars, boot camps, online training, and assistance in gaining certifications.
Above & beyond your base salary are a full suite of medical, dental, vision, 401K, flex spending account; short/long term disability & life insurance; vacation and personal days.

Existing authorization to work in the United States is required.

BT is an Equal Opportunity Employer.

CONTACT
---------------------------------------------------
Please apply directly to:
www.btamericascareers.com
Requisition #610

BT
Brigitte Williams
Senior Corporate Recruiter
brigitte.williams@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Sr. Security Analyst, Richmond

2008-10-01T12:21:42Z

VP of Marketing, Alexandria

2008-10-01T12:21:42Z

Security Director, Portland

2008-10-01T12:21:42Z

Security Consultant, New York

2008-10-01T12:21:42Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Security Consultant
Location: New York, New York, United States
Type: Permanent F/T

Closing Date: 2008-10-26

BT is one of Europe's leading providers of communications services, with over 21 million corporate and residential customers in the UK alone. Principal activities include local, national and international telecommunications services, higher-value broadband and Internet products and services, as well as IT solutions.

BT Global Services is BT’s business communications division, providing a complete range of integrated communications and IT services to customers world-wide. Specialization is flexible and innovative services to fulfill customers' end-to-end communication needs with maximum clarity and control. Focus is on multi-site organizations in Europe, US and Asia Pacific with substantial European operations.

Division: Managed Security Solutions Group
Location: Anywhere in the US

Travel: Variable (domestic)
Telecommuting / Work from home opportunity / Virtual office

Position:
Ethical Hacker / Penetration Tester

Job Description:
The Ethical Hacker / Penetration Tester will be working individually and in teams. This individual will be performing network and web application ethical hacking assessments on multi-protocol enterprise network and application systems.
Duties may include:
• Requirements analysis and design
• Scoping of testing activity
• Vulnerability assessment
• Tools/script testing
• Troubleshooting
• Physical security audits, logical security audits, logical protocol and traffic audits
• Training of client staff
Engagement Management
• Understanding of best-practice methodologies
Business Development
• Opportunity Identification
• Ability to articulate components of the BT security consulting offering as well as of the BT associated services
Specific Technical Skills
• Desktop/Network Operating Systems: Windows, HP-UX, Linux, Solaris, AIX, etc.
• Specific proxying tools such as Paros, Burp, Spike, Achilles "fault injection"
• Commercial tools like Watchfire's AppScan, SPI Dynamics' WebInspect, Kavado's Scando, Cenzic's Hailstorm, Application Security Inc.'s AppDetective, freeware tools like Whisker and Nikto; Web Servers like Apache, IIS mention of WebServices like XML, SOAP mention of web products like Siteminder, Entrust getaccess, RSA Cleartrust
• Security Scanners: Nessus, nmap, Retina, Appscan
• Web application architecture
• Management Systems
• Physical/Data Link Layer

JOB REQUIREMENTS
---------------------------------------------------
Job Requirements:

Consulting Skills

• Independence: self-directed
• Teamwork
• Client Satisfaction: Takes responsibility for ultimate client project satisfaction
• Company Representation

Technical Skills

• Strong web application penetration testing experience is a requirement
• Solid network penetration testing experience is a plus
• Security background (penetration testing, C++, XML, and PERL programming knowledge)
• Technical knowledge in network security products, cryptographic suites, firewalls a plus
• Knowledge of computer forensics, network exploitation, ethical hacking, penetration testing and tool development
• Experience in bypassing firewalls, evading intrusion detection are a nice-to-have
• UNIX and Windows administration
• Experience in application level attacks
• Knowledge of the software development lifecycle in a large enterprise environment

Education and Certifications:
Bachelors Degree in Information Technology/Computer Science or 5 years IT experience
Any of the following certifications: CISSP, GIAC, CEH certifications
Benefits and Training
BT is an employee-oriented company that offers a collaborative environment for consultants to work in. BT offers training, both internally and externally to our consultants through Webinars, training classes, seminars, boot camps, online training, and assistance in gaining certifications.
Above & beyond your base salary are a full suite of medical, dental, vision, 401K, flex spending account; short/long term disability & life insurance; vacation and personal days.

Existing authorization to work in the United States is required.

BT is an Equal Opportunity Employer.

CONTACT
---------------------------------------------------
Please apply directly to www.btamericascareers.com
Requisition #610

BT
Brigitte Williams
Senior Corporate Recruiter
brigitte.williams@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Director, Information Security, Waterbury

2008-10-01T12:21:41Z

Security Engineer, Moscow/St Petersburg or Home Working

2008-10-01T12:21:41Z

Certification & Accreditation Engineer, Springfield

2008-10-01T12:21:41Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Certification & Accreditation Engineer
Location: Springfield, Virginia, United States
Type: Permanent P/T

Closing Date: 2008-10-26

Nortel Government Solutions (NGS) is one of the nation's strongest and most dynamic systems solutions providers. NGS specializes in the acquisition, design, engineering, evaluation, and development of advanced IT systems and data communications networks for information systems and applications. Our long tradition of success is attributable to the bright, driven professionals at NGS.

Nortel Government Solutions has an immediate opening for an Information Assurance Certification Agent located at Customs & Border Protection (CBP) in Springfield, VA.

Nortel Government Solutions maintains a position as a Certification Agent (CA) for the Border Enforcement Management System (BEMS) and the Enterprise Data Management and Engineering Division (EDME). In this position we report to the Information System Security Manager (ISSM) and provide a level of independent evaluation that is required by the Certification and Accreditation (C&A) process. NGS provides an independent assessment of the security plan to ensure it provides a set of security controls for the information system that is adequate to meet all applicable security requirements. In addition, we are responsible for a comprehensive assessment of the management, operational, and technical controls of the information system to determine if they are implemented correctly, operating correctly, and meeting the security requirements. The CA recommends corrective actions to reduce or eliminate security vulnerabilities.

The certification agent will be required to perform the following functions:

1. Assist with information systems security audits and reviews, as appropriate. Determine the priority level associated with audit findings.

2. Validate that the information system design meets a specified set of managerial, operational, and technical security requirements and that it includes the implementation of an adequate audit trail capability of security-related activities.

3. Determine, with the data owner(s) and ISSO(s), the minimum-security features for each unique application.

4. Ensure security plans are developed for all information systems. Ensure that the application is certified and the certification documentation is developed using the DHS C&A tool, Risk Management System (RMS)

5. Review and evaluate security impact of changes to the applicable IT system, including interfaces with other networks.

6. Observe the testing of security controls for assigned MA's and GSS's.

7. Provide written justification, when appropriate, to the ISSM for approval by the Assistant Commissioner, OIT to obtain a written waiver of or exception to the policy for mandated security features.

8. Review C&A Packages and work with the assigned ISSO's and system owner to ensure that the security requirements of the system have been documented, tested, and implemented. Write the Security Assessment Report (SAR) and include the Certification Statement as part of the SAR. The final Plan of Actions and Milestones (POA&M) and a list of residual risks must also be included in the C&A Package. 9. Represent the STP Branch at key project meetings, as directed by the ISSM.

10. Validate Trusted Agent FISMA (TAF) submissions for FISMA compliance.

11. Maintain an on-line copy of the following documents and ensure the documents are current: annual security self-assessment (i.e., NIST SP 800-26), System Assessment Report, System Security Plan (SSP), Security Risk Assessment Report, Contingency Plan and Test Results, Security Test Plan and Evaluation, Vulnerability Scan Results, signed POA&M, Signed Accreditation Transmittal Letter.

JOB REQUIREMENTS
---------------------------------------------------
Bachelor's Degree

Minimum 12 years of experience in Information Assurance/Security.

Qualifications:

An astute individual with proven leadership experience
Self starter
Can lead by doing, and has the ability to prioritize and direct as required.
Must have former ISSO experience
Strong interpersonal skills
Excellent oral and written communication abilities
Ability to work with field ISSO's – strong technical background with strong IA experience
Five or more years working in IT security as an ISSO or Security Certifier in either military or civilian government environments a plus.
Pluses are familiarity with the DHS-mandated certification & accreditation and compliance tools, RMS & TAF.
CBP experience a plus.
CISSP or other IT security related certification (ie., CAP) is desired.
Security Clearance:

The candidate must currently possess or be able to obtain a CBP full background investigation clearance.
Active Secret or Top Secret clearance or ability to obtain TS is a plus.

***************** No Agencies Please *****************

Nortel Government Solutions offers competitive salaries and a comprehensive benefits package.
Apply Online at Job Openings .
Nortel Government Solutions is proud to be an equal opportunity employer.

Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. US citizenship may be required for some positions.

CONTACT
---------------------------------------------------
Please click the link below and apply online.:
https://nortelgov.ats.hrsmart.com/cgi-bin/a/highlightjob.cgi?jobid=15447

Kim Gilmer

kim.gilmer@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Security Engineer, Kiev

2008-10-01T12:21:41Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Security Engineer
Location: Kiev, , Ukraine
Type: Permanent F/T

Closing Date: 2008-10-27

In line with the global security strategy, he will define, monitor & audit security standards within the company. As part of the core security team, he will Investigate and Coordinate response to significant security events. Provide IT Security expertise internally and developp adequate security measures to prevent and handle attacks against information systems. Define policies & procedures, and communicate toward IT administrators to maintain security standards, and ensure adequate IT security levels are applied worldwide.

JOB REQUIREMENTS
---------------------------------------------------
Required Skills:
----------------

- Information Security knowledge : Threats & Vulnerabilities, Risk assessment & mitigation, Security Policy, Security Management process
- Linux systems: OS hardening, Scripting (shell, Perl, python), Servers & DB administration (Apache, MySQL, samba, ftp, ssh…)
- Windows systems: OS architecture and administration (registry, strategies…)
- Network : TCP/IP, Ethernet, WAN, infrastructure administration (router, switch, Wi-Fi, VPN...), protocols (snmp, dns, SSL/TLS, …), packet filtering (iptables / pcap…)
- Servers : Windows server, Unix/Linux, Virtualization (Vmware, Xen,…), SAN, Cluster, Load balancing, distributed C/S architecture, monitoring tools (Nagios, OpenView, …)
- Security infrastructure : Firewall (Checkpoint, IPtables…), IDS/IPS (Snort, Prelude, ...), Scanners (Qualys, Nmap, Nessus …), Antivirus/spam/malware (Symantec, ClamAV,…)
- Knowledge in Telephony (VOIP, SIP, QSig,…) and mobility (PDA / Blackberry, RAS,…)
- Security audit & alert: pen test tool (BackTrack…), log analyses, incident detection and management process (syslog, alerts, forensic analyses…), Honeypots (nepenthes, honeytrap, ….)
- User access control : Windows 2003 domains, AD/LDAP/Kerberos, SSO, reverse proxying, Identity access management
- Identify new security vulnerabilities, virus proliferation trend and perform corrective actions (payload, hex analysis, …)
- In general, open source technologies skills would be appreciated

Education/Others:
-----------------
- A Bachelor of Science degree in Computer Science, IT Engineering or other related disciplines or strongly and justified autodidact
- Good English level
- Self organization capacity (security survey, project management, reporting) and rigourous method (PDCA methodology)
- Good Presentation and Communication skills (enjoy interacting with people of all levels in a multicultural environment)

Appreciated (not mandatory) skills:
-----------------------------------
- CISSP, ISO 27001 certified, ITIL, ethical hacking
- Microsoft certification
- French language
- Open source contributor

Travel:
-------

Regular in Europe, with 2 or 3 intercontinental travels per year.

Experience:
-----------
Minimum 3-5 years of experience specialized in the area of Network & Systems Security Policy, Control and Vulnerability Testing

CONTACT
---------------------------------------------------
Mr Vincent Jaussaud, APC by Schneider Electric Chief Security Officer
Tel: +33 4 76 18 32 19

American Power Conversion (APC)
Vincent Jaussaud
Chief Security Officer
Vincent.Jaussaud@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Security Consultant, Nairobi

2008-10-01T12:21:41Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Security Consultant
Location: Nairobi, , Kenya
Type: Permanent F/T

Closing Date: 2008-10-27

Dear All

One of the leading big 4 global audit and consulting firm is seeking to recruit IT security professionals for their Security Team to be based in Kenya. The salary and perquisites will be on par with the best in industry. If you are interested, please forward your latest resume by replying to this securityjobkenya@... at the earliest possible convenience.

JOB REQUIREMENTS
---------------------------------------------------
Mandatory Technical Requirements
4 + years experience.
Worked extensively on Network Security assignments. Technical Security Assessment, Penetration Testing, Web Application Security Testing, Security Configuration Review
Detailed knowledge of Networking and Security concepts such as varied Protocols, DMZ, PKI, VLAN, N-tier Architectures, etc.
Detailed knowledge of Network Architecture and Design review and providing recommendations. Knowledge of Microsoft technologies, Unix, Linux, Sybase, Oracle security.
Hands-on exposure on the usage of paid as well as freeware tools such as Retina, Core Impact, Nessus, Nikto, Webinspect, etc
Performed application security assignments including White box and Black box testing
Worked with market leading Firewall, IPS, VPN, Switches and Routers. In addition, strong knowledge of Email Server, Web Server, Proxy technologies.
Industry Certifications such as CISA, CISSP, CCNA, CCSA, MCSA, MCSE, CEH, etc.
Knowledge of Security Log collection, review and management
Detailed knowledge of the Security devices such as Firewalls, IDS/IPS, Content Filtering, etc.

Mandatory Non-Technical Requirements
Led a team of individuals
Team player and Team leadership skills
Prior Work experience in a leading Security Firm or Big 4
Ability to learn and update the Security and the Business skills
Knowledge of Project Management / Time Management and Budget Management
Excellent Communication and Written / Spoken English skills.

Desirable Technical Requirements
Aware of various industry standards and guidelines such as COBIT, COSO, ITIL, ISO 27001/27002, BS7799:3
Experience in developing applications through commercial software such as C, C++, Visual Studio, PERL, etc
Information Risk Management and ISO 27001 planning and implementation experience
IS Audit experience (Internal and External)
Experience in SAS, SOX audit
Conducted Security Awareness Training and Workshops

Desirable Non-Technical Requirements
Business Development skills to initiate in the identification and management of business opportunities
Worked on Overseas assignments
Knowledge of Finance and Accounting through certifications such as CA, ACCA, CPA

CONTACT
---------------------------------------------------
If you are interested, please forward your latest resume by replying to this securityjobkenya@... at the earliest possible convenience.

Big 4
Williams James
Manager
securityjobkenya@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Application Security Engineer, Washington

2008-10-01T12:21:40Z

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------

JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Engineer
Location: Washington, District of Columbia, United States
Type: Permanent P/T

Closing Date: 2008-10-26

Nortel Government Solutions (NGS) is one of the nations strongest and most dynamic systems solutions providers. NGS specializes in the acquisition, design, engineering, evaluation, and development of advanced IT systems and data communications networks for information systems and applications. Our long tradition of success is attributable to the bright, driven professionals at Nortel. Creative, responsible, customer-oriented people are drawn to NGS's technical strength, our dynamic workplace and the exceptional opportunities for personal and professional growth. NGS offers a competitive salary, training reimbursement, education reimbursement, certification bonuses, and a comprehensive benefits package.

Nortel Government Solutions has an immediate opening for a Public Key Infrastructure (PKI)Engineer located in Washington, DC.

Job Description

In support of a US Federal Public Key Infrastructure (PKI) implementation, the PKI Enablement Engineer provide technical assistance for the configuration and modification of customer systems and applications to accept X.509 /certificate credentials for the purposes of user authentication, application of digital signatures or implementation of cryptographic capabilities.

The PKI Enablement Engineer will coordinate with system owners, certification and accreditation teams, and policy teams and will assist system/application owners with: PKI Technical and policy requirements, Identification of requirements and constraints, Enablement strategy, Enabling procedures.

JOB REQUIREMENTS
---------------------------------------------------
Education Requirements:

Bachelor’s degree in Computer Science, Information Systems, Engineering, Business, or related discipline

Job Specific Requirements:

Seven to nine years of technical experience is required

At least two years of hands-on PKI experience, including one year of demonstrated experience with Entrust PKI products to enable windows and web-based applications to use PKI services.

Must have worked with smart-card technologies, preferably using ActivCard or ActivIdentity card-management systems.

Strong knowledge of programming (Java, C, C++) to provide programming and technical guidance.

Must have thorough Microsoft Windows experience, must have worked with Microsoft cryptographic tools (e.g., CAPI), and must have a good understanding of Active Directory.

Excellent interpersonal and customer interface skills.

Strong oral and written communications skills. Possess the ability to work with little supervision
US Citizenship and current active Top Secret clearance are required.
Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. US citizenship may be required for some positions.

******************** No Agencies Please ********************

Nortel Government Solutions offers a competitive salary, training reimbursement, education reimbursement, certification bonuses, and a comprehensive benefits package. If competitive skills drive you to a challenge, fulfill your destiny by contacting us today and Apply Online at www.nortelgov.com. Nortel Government Solutions is proud to be an equal opportunity employer. We pledge equal access to employment, facilities, and programs, regardless of race, color, creed, religion, sex, age, disability, national origin, veteran or marital status.

CONTACT
---------------------------------------------------
Please apply to this position by going to our website below:

https://nortelgov.ats.hrsmart.com/cgi-bin/a/highlightjob.cgi?jobid=14188

Kim Gilmer

kim.gilmer@...

---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs

Incident Handler, Any major US City (Cincinnati preferred)

2008-10-01T12:21:40Z