This job ad has been posted over 30 days ago...
3
applicants
Senior Engineer - Professional Services
at Microland Ltd. in Banglore (Published at 25-10-2011)
Job Description
Sr. Engineer – Professional Services
3 to 5 years of experience in Application Security, Vulnerability Assessment and Penetration Testing
Role Requirements
• Ability to conduct Manual Web Application Security Assessment for complex Web Apps
• Ability to conduct Vulnerability Assessment & Penetration Testing
• Creating application Threat Models and delivering Design Threat Summaries to customers
• Ability to perform manual source code review with Web Technologies like .NET, PHP and J2EE
• Ability to set / identify security testing objectives & develop security test strategy
• Recommending appropriate vulnerability mitigation approaches to clients
• Creating project proposals, customer questionnaires, training documents and evaluation surveys.
• Imparting security training to Trainee Engineers, Application Developers and Management
• Run & Analyze the security test (Manual & Automated) and pinpoint the security issues and suggest countermeasures for security improvements.
• Technical expertise in a broad range of application and technical architecture components (applications/OS, database, network)
• Should have fair amount of knowledge in at least Windows & Unix operating systems and Oracle & SQL Server databases.
• Knowledge in various open source security tools
• Ability to do security testing in line with internal standards.
• Good communication & negotiation skills
• Should be able to work independently
• CEH Certification is desirable
• Scripting in atleast one language like Perl, Python or Ruby is desirable
• Ability to conduct design reviews, requirement reviews, evaluates technical architecture from security view point.
Tool Knowledge:
Acunetix Web Application Scanner, Microsoft Baseline Analyzer, Backtrack, coSARA, Metasploit, Tenable Nessus, Nmap, Wikto, Cain and Abel, Paros, eEye Retina Scanner, JTR, WebScarab, Fortify etc.
Note: Applications have been closed
Sr. Engineer – Professional Services
3 to 5 years of experience in Application Security, Vulnerability Assessment and Penetration Testing
Role Requirements
• Ability to conduct Manual Web Application Security Assessment for complex Web Apps
• Ability to conduct Vulnerability Assessment & Penetration Testing
• Creating application Threat Models and delivering Design Threat Summaries to customers
• Ability to perform manual source code review with Web Technologies like .NET, PHP and J2EE
• Ability to set / identify security testing objectives & develop security test strategy
• Recommending appropriate vulnerability mitigation approaches to clients
• Creating project proposals, customer questionnaires, training documents and evaluation surveys.
• Imparting security training to Trainee Engineers, Application Developers and Management
• Run & Analyze the security test (Manual & Automated) and pinpoint the security issues and suggest countermeasures for security improvements.
• Technical expertise in a broad range of application and technical architecture components (applications/OS, database, network)
• Should have fair amount of knowledge in at least Windows & Unix operating systems and Oracle & SQL Server databases.
• Knowledge in various open source security tools
• Ability to do security testing in line with internal standards.
• Good communication & negotiation skills
• Should be able to work independently
• CEH Certification is desirable
• Scripting in atleast one language like Perl, Python or Ruby is desirable
• Ability to conduct design reviews, requirement reviews, evaluates technical architecture from security view point.
Tool Knowledge:
Acunetix Web Application Scanner, Microsoft Baseline Analyzer, Backtrack, coSARA, Metasploit, Tenable Nessus, Nmap, Wikto, Cain and Abel, Paros, eEye Retina Scanner, JTR, WebScarab, Fortify etc.
Note: Applications have been closed