[vox-jobs] Deloitte & Touche: Application Security Engineer (fwd)
Ken Herron
vox-jobs@lists.lugod.org
Sun, 11 May 2003 13:47:13 -0700
---------- Forwarded Message ----------
Date: Friday, May 09, 2003 07:54:05 PM +0000
From: Ray Jannson <rjannson@deloitte.com>
To: securityjobs@securityfocus.com
Subject: Deloitte & Touche: Application Security Engineer
We are currently seeking a Senior Consultant with application security
engineering experience in the San Francisco Bay Area. The qualifications
are as follows:
Required Skills:
=95 Identify technical strategies for minimizing application software
vulnerabilities.
=95 Application architecture
=95 Application security audits
=95 Software source code reviews
=95 Software source code reviews using automated vulnerability testing
tools and manual review of code.
=95 Risk mitigation of common vulnerabilities such as buffer overrun,
cross-site scripting attacks, SQL injection attacks, etc.
Preferred technology experience with the following:
=95 WhiteHat Arsenal 1.05, Sanctum, AppScan, SPI Dynamic, WebInspect
ITS4, KaVaDo, ScanDo, @stake Web Proxy, Black Hat, Defcon, SANS.
To be considered for this position the following are essential:
=95 BA/BS in information technology or related field, MS preferred
=95 CISSP, CCNA and/or CISA certification a plus.
=95 Minimum of five years application security experience
=95 Prior Big 5/consulting experience.
=95 Excellent verbal and written communication
=95 Industry Experiences in financial services, high-tech, and /or
healthcare a preferred
=95 Willingness to travel
All qualified candidates please forward your resume and cover letter to
rjannson@deloitte.com . For more information about Deloitte & Touche,
visit our web site at www.deloitte.com.
---------- End Forwarded Message ----------
--=20
Ken Herron