This job ad has been posted over 30 days ago...
18
applicants
Security Engineer - Product Security Engineering
at Citrix (Anywhere) (Published at 18-08-2011)
Position Summary:
The Citrix Platform Security Engineering team is looking for a hands on security penetration test engineer. The role involves a variety of security activities ranging from creating new test plans to gray box testing of various products using multiple tools. The candidate will have the opportunity to work on a wide range of products, including core Citrix application and server virtualization technologies, and will be working within a well established team of security engineers. The ideal candidate will be a technically oriented security test engineer with a proven track record in black box, gray box and white box security testing.
The main focus of the candidate will be to work with Citrix engineering teams and other security specialists to uphold the level of security in Citrix products; this will involve conducting detailed technical security analysis of specific components as well as working with engineering teams to provide general application security guidance and advice.
Primary Responsibilities:
肘dentify security test requirements of products and execute penetration tests on them in different environments.
彪alidate/prioritize issues and work with product teams to resolve them.
紐eview/consolidate findings and prepare assessment reports/management summaries
百ecurity analysis of product architecture, design, and implementation.
肘dentification and analysis of potential security vulnerabilities.
筆aking technical and business recommendations to product teams.
柊nalysis of customer reported security issues.
姫roviding technical guidance and security training to development teams.
標riting and reviewing product security bulletins.
Required:
必nowledge of common software vulnerabilities.
百cripting/Programming experience using Ruby, Perl, C, etc.
髭xperience with tools such as Nessus, Foundstone, Codenomicon, Burp Suite, IBM AppScan, etc.
柊bility to identify and implement longer term product and process improvements.
柊bility to analyse the risk presented by potential vulnerabilities.
柊bility to clearly and effectively communicate with engineers and management.
稗achelors degree in Computer Science or related field.
Desirable:
匹ISSP, LPT or other certifications.
髭xperience testing web based applications.
百olid understanding of common networking protocols: TCP, IP, UDP, HTTP, SSL.
膝ood understanding of virtualization and related technologies and security risks.
姫rior experience with Citrix products.
Note: Applications have been closed
The Citrix Platform Security Engineering team is looking for a hands on security penetration test engineer. The role involves a variety of security activities ranging from creating new test plans to gray box testing of various products using multiple tools. The candidate will have the opportunity to work on a wide range of products, including core Citrix application and server virtualization technologies, and will be working within a well established team of security engineers. The ideal candidate will be a technically oriented security test engineer with a proven track record in black box, gray box and white box security testing.
The main focus of the candidate will be to work with Citrix engineering teams and other security specialists to uphold the level of security in Citrix products; this will involve conducting detailed technical security analysis of specific components as well as working with engineering teams to provide general application security guidance and advice.
Primary Responsibilities:
肘dentify security test requirements of products and execute penetration tests on them in different environments.
彪alidate/prioritize issues and work with product teams to resolve them.
紐eview/consolidate findings and prepare assessment reports/management summaries
百ecurity analysis of product architecture, design, and implementation.
肘dentification and analysis of potential security vulnerabilities.
筆aking technical and business recommendations to product teams.
柊nalysis of customer reported security issues.
姫roviding technical guidance and security training to development teams.
標riting and reviewing product security bulletins.
Required:
必nowledge of common software vulnerabilities.
百cripting/Programming experience using Ruby, Perl, C, etc.
髭xperience with tools such as Nessus, Foundstone, Codenomicon, Burp Suite, IBM AppScan, etc.
柊bility to identify and implement longer term product and process improvements.
柊bility to analyse the risk presented by potential vulnerabilities.
柊bility to clearly and effectively communicate with engineers and management.
稗achelors degree in Computer Science or related field.
Desirable:
匹ISSP, LPT or other certifications.
髭xperience testing web based applications.
百olid understanding of common networking protocols: TCP, IP, UDP, HTTP, SSL.
膝ood understanding of virtualization and related technologies and security risks.
姫rior experience with Citrix products.
Note: Applications have been closed