---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security Architect
Location: Mountain View , California, United States
Type: Permanent F/T
Closing Date: 2008-06-09
Responsibilities include identifying and understanding the development practices, networks and infrastructure that make LinkedIn successful in order to identify the things that can put our success at risk, and then building solutions and mitigations to help resolve those risks. Guide the LinkedIn technology organization's security by participating in design reviews, Threat Modeling, and in depth security penetration testing of our code and systems. These responsibilities extend to providing input on application design, secure coding practices, log forensics, log design and application code security. The ideal candidate will have in-depth experience protecting against web and web services security vulnerabilities including cross-site scripting, sql injection, DoS attacks, XML/SOAP and API attacks, email security flaws and more. Also included is performing cutting edge research on new attacks, writing white papers and presenting on those findings to internal audiences. In addit
ion this individual will hold responsibilities for evaluating external and/or building internal application security tools and driving usage of these tools internally.
* Minimum of 5 years working in application security
* Ability to demonstrate strategic thinking
* Extensive problem solving and analytical skills
* Experience working in 24x7xforever support for security in production systems
* Extensive knowledge of the Open Web Application Security Project
* Extensive programming and application development experience in multiple languages such as Java, C, and scripting languages
*Solid understanding of directory security architectures highly desired (LDAP, Active Directory, DNS, etc.). Design and implementation experience a very strong plus.
*Experience participating in application development projects and recommending security strategies for application design and deployment is required. Experience in the design of security architectures for Web-based application systems using industry standard technologies and protocols such as J2EE, LDAP, XML, etc. strongly desired.
*Demonstrated design, analysis, construction and problem-solving skills.
*Excellent interpersonal, consultative, coaching, communication, and negotiation skills.
*Ability to communicate security objectives orally and in writing to a variety of audiences.
*Ability to work independently in a self-directed manner and collaboratively as a team leader or member; ability to create and implement detailed action plans.
*Ability to understand legal and regulatory requirements and business drivers and priorities, and integrate these requirements into overall security design.
*Ability to manage and prioritize complex, changing workloads in a challenging technical environment.
*Capacity to quickly absorb new concepts and technologies and apply that knowledge to current efforts and plans.
*Demonstrated flexibility and capacity for creative thinking.
CONTACT
---------------------------------------------------
Click <a href="http://www.jobvite.com/CompanyJobs/Job.aspx?j=orqaVfwG&s=SecurityF
ocus">here</a> to apply.
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security Architect
Location: Mountain View , California, United States
Type: Permanent F/T
Closing Date: 2008-06-09
Responsibilities include identifying and understanding the development practices, networks and infrastructure that make LinkedIn successful in order to identify the things that can put our success at risk, and then building solutions and mitigations to help resolve those risks. Guide the LinkedIn technology organization's security by participating in design reviews, Threat Modeling, and in depth security penetration testing of our code and systems. These responsibilities extend to providing input on application design, secure coding practices, log forensics, log design and application code security. The ideal candidate will have in-depth experience protecting against web and web services security vulnerabilities including cross-site scripting, sql injection, DoS attacks, XML/SOAP and API attacks, email security flaws and more. Also included is performing cutting edge research on new attacks, writing white papers and presenting on those findings to internal audiences. In addit
ion this individual will hold responsibilities for evaluating external and/or building internal application security tools and driving usage of these tools internally.
JOB REQUIREMENTS
---------------------------------------------------
Key needs:
1) ID management in a very large scale manner
2) Web security models
3) Threat modeling
4) Security penetration
5) Web services security:
a. cross-site scripting,
b. sql injection,
c. DoS attacks,
d. XML/SOAP and API attacks,
e. email security flaws and more.
6) Some security industry certification:
a. CISSP
b. CISA
c. CISM
d. GIAC
e. ISSA
f. ISACA
Required Skills/Experience:
* BS degree (4 year program)
* Minimum of 5 years working in application security
* Ability to demonstrate strategic thinking
* Extensive problem solving and analytical skills
* Experience working in 24x7xforever support for security in production systems
* Extensive knowledge of the Open Web Application Security Project
* Extensive programming and application development experience in multiple languages such as Java, C, and scripting languages
*Solid understanding of directory security architectures highly desired (LDAP, Active Directory, DNS, etc.). Design and implementation experience a very strong plus.
*Experience participating in application development projects and recommending security strategies for application design and deployment is required. Experience in the design of security architectures for Web-based application systems using industry standard technologies and protocols such as J2EE, LDAP, XML, etc. strongly desired.
*Demonstrated design, analysis, construction and problem-solving skills.
*Excellent interpersonal, consultative, coaching, communication, and negotiation skills.
*Ability to communicate security objectives orally and in writing to a variety of audiences.
*Ability to work independently in a self-directed manner and collaboratively as a team leader or member; ability to create and implement detailed action plans.
*Ability to understand legal and regulatory requirements and business drivers and priorities, and integrate these requirements into overall security design.
*Ability to manage and prioritize complex, changing workloads in a challenging technical environment.
*Capacity to quickly absorb new concepts and technologies and apply that knowledge to current efforts and plans.
*Demonstrated flexibility and capacity for creative thinking.
CONTACT
---------------------------------------------------
Click <a href="http://www.jobvite.com/CompanyJobs/Job.aspx?j=orqaVfwG&s=SecurityF
ocus">here</a> to apply.
LinkedIn Corporation
Veronica Vallez
Recruiting Coordinator
vvallez (at) linkedin (dot) com [email concealed]
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
[ reply ]