• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

 

Location
Country:	United States
State/Prov:	Illinois
City:	Chicago
Position
Position/Title:	Penetration Engineer
Position Type:	Contract
Closing Date:	2009-11-22
Job Description:	Contract position in Chicago , IL for a security research engineer. The contract is most likely going to be 3-6 months located downtown Chicago. Position Name: Information Security - Research Engineer Assignment Description Skills Required: The position is responsible for acting as lead technical with expertise regarding security vulnerabilities by conducting web application security testing, reverse engineering, malware analysis, protocol analysis, and debugging; reporting security vulnerabilities and the risks those vulnerabilities present to Vice Presidents, Managers, and other technical individuals; and recommending mitigating solutions to vulnerabilities. Web Application Security Testing: Core Skill Set: 1. Hands on Manual Testing 2. Source code reviewing They will primarily be responsible for assessing web applications not using scanners or tools. They are looking for people to test, debug, and determine security vulnerabilities. The position is responsible for acting as lead technical with expertise regarding security vulnerabilities by conducting web application security testing, reverse engineering, malware analysis, protocol analysis, and debugging; reporting security vulnerabilities and the risks those vulnerabilities present to Vice Presidents, Managers, and other technical individuals; and recommending mitigating solutions to vulnerabilities. • Both network and application security are required. Application security will be 95% of the focus. • All kinds of automated scanning software: both open source and licensed products. If you can use and interpret the results from one product, you should be able to use them all effectively, so specifics are not important. Also, we focus on manual testing. • 98% of the position is manual. A very strong background in manual testing is necessary. • Must be intimately familiar with XSS, SQL injection, input validation, and all other types of web application vulnerabilities. Must have some experience with buffer overflows (e.g., manual experience, not automated, and must be able to differentiate between different types of overflows at a high level). • We are looking for someone to assess security without using a set of tools.
Job Requirements:
Contact Information
Contact Directions:	Regards, ________________________________________ Vikas Kanoongo Recruitment | Sales IdeaReboot 9055 SW 73rd CT, Unit 1409 Miami, Florida 33156 United States vkanoongo at ideareboot dot com | Work: 315.683.3001 | Fax: 305.397.2534| Linkedin
Company:	IdeaReboot
First Name:	Vikas
Last Name:	Kanoongo
Title:	Recruitment - Manager
Email:	vkanoongo (at) ideareboot (dot) com [email concealed]