Please direct your responses to: jeffreymyersfrb@yahoo.com
As you can imagine, the work of the Federal Reserve Bank is imperative for the
proper operation of our nation´s financial infrastructure. We are in need of
individuals to join our team to keep our nations fiscal services sound. My
immediate need is for an InfoSec experienced individual. This is a great
opportunity for a person to experience an international scale operation and to
have great impact on the economic landscape of our country.
Please call me and it would be my pleasure to discuss the opening in greater
detail.
Jeff Myers
415-974-3342
Penetration Tester Job Description
Overview:
The National Incident Response Team (NIRT), a National Information Technology
Operation (NITO) for the Federal Reserve System, delivers effective and
efficient national intrusion detection, incident response, security
intelligence, threat assessment, and vulnerability assessment services for the
Federal Reserve System. As a member of NIRT´s Information Security Assessment
Team, you will perform hands-on, technical penetration/ethical hacking tests of
all facets of the Federal Reserve System´s IT environment. You will interact
directly with NIRT´s customers located across the United States.
Job Responsibilities:
• Oversee and conduct vulnerability assessments and penetration
testing/ethical hacking
• Oversee and perform the review and analysis of security vulnerability
data to identify applicability and false positives
• Prepare and distribute security assessment reports to customers
• Research and develop testing tools, techniques, and process improvements
• Perform additional incidental duties as assigned
Job Requirements:
• Bachelor degree in Information Technology/Computer Science, or related
disciplines and/or equivalent work experience
• Excellent analytical skills
• Excellent interpersonal, communication, organizational, and project
management skills
• Team player with excellent consultative and communication skills, and
the proven ability to work effectively with client, internal management and
staff, vendors and consultants
• Strong written and verbal communications skills
• Proven ability to communicate technical issues to technical and
non-technical business area representatives
• Hands-on experience with commercial and open-source network and
application security testing tools
• Experience testing web applications for common security vulnerabilities
as defined by OWASP. These include input validation vulnerabilities, broken
access controls, session management vulnerabilities, cross-site scripting
issues, SQL injection and web server configuration issues
• Ability to travel
• Approximately 3-5 years of experience in the security aspects of
multiple platforms, operating systems, software, communications, and network
protocols
• Ability to obtain US Security Clearance
• CISSP certified or the ability to work towards obtaining the
certification
Desired
• Script-writing skills (Python, Perl)
• Familiarity with application development (C, C++, .NET, JAVA)
• Experience developing exploits
• Experience with application security source code and design review
Based in either Dallas or San Francisco
Option to telecommute 2-3 days a week
US citizen
------------------------------------
********************************************************************
Read the new KIT List blog at www.kitlist.wordpress.com for job tips and to connect to our community!
Please go to www.KITlist.org to join, post jobs, or get answers to common questions. If you have any comments or questions, you can reach us directly at KITtechmoderator@KITlist.org.
By using the KIT List you agree to comply with the Terms of Use on the site, and will not use discriminatory employment practices. The KIT List is a service of Connelly Communications, Inc.
TO UNSUBSCRIBE:
Replying to KIT emails with an "unsubscribe" request does not work.
Instead, just send an email (from the same account you used to subscribe) to KITlist-Tech-unsubscribe@yahoogroups.com. If you are still receiving emails after a few days, please email us at KITtechmoderator@KITlist.org and we will manually remove you. Thanks!
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/KITlist-Tech/
<*> Your email settings:
Individual Email | Traditional
<*> To change settings online go to:
http://groups.yahoo.com/group/KITlist-Tech/join
(Yahoo! ID required)
<*> To change settings via email:
KITlist-Tech-digest@yahoogroups.com
KITlist-Tech-fullfeatured@yahoogroups.com
<*> To unsubscribe from this group, send an email to:
KITlist-Tech-unsubscribe@yahoogroups.com
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
No comments:
Post a Comment