Paid Advertising is
ha.ckers sla.cking
Ever wanted to work as a "chief hacker" "security evangelist"? This is a place to post jobs or ask for work. Over time as I hear about job offers, we can consolidate them into this board. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Jr. Application Security Engineer needed in the DC area
Posted by: kbrydc
Date: April 02, 2010 04:16AM

Target Labs is searching, on behalf of its client, for a Junior Application Security Engineer who is interested in working in the DC area.

Client: TBD
Location: Washington, DC Metro. area
Position: Jr. Application Security Engineer
Duration: 6 months to start (possibly contract-to-permanent if the right ‘fit’)
Pay rate: TBD

In sort: If you have a few years of development and a few years of secrutiy, we should talk!

Formal position description:

Jr. Application Security
The Jr. Application Security Engineer (Jr. ASE) is responsible for helping design security for all aspects of the application life cycle. The ASE ensures security risks of applications are known and evaluated for significance and effective security products and techniques are identified, implemented, and applied. Position serves as subject matter expert on production security technologies.

Essential Job Functions:
• Researches new information security technologies (in the areas of application and application infrastructure components).
• Participates in teams with security SMEs, in all application lifecycle phases, including: requirements gathering, architecture development, product/service selection and procurement, functional & QA testing, detailed technical design, technology infrastructure implementation and deployment, migration from existing services, operational process and procedure documentation, operations staff training)
• Advises and consults internal clients on appropriate application of existing security services to solve problems or enable new business opportunities.
• Recommends, customizes, implements, documents, and transitions to operations, reusable technical security service components including: application level intrusion detection systems, authentication systems, authorization systems, audit trail management systems, cryptographic systems, and others as defined by management.
• Researches and implements new security technologies as point solutions for Technology initiatives unqualified under reusable enterprise security services. Based on accumulated knowledge of project-specific security implementations, recommend new security service development ideas to the Security Technology R&D process.
• Assess applications to identify security risks using appropriate automated tools and other manual techniques. Provide viable recommendations for minimizing or eliminating identified security risks. Advise and assist with implementing recommendations where needed.
• Work with Application team and help them in closing out security issues in their application.
• Perform other duties and responsibilities as assigned.

Education/Experience Requirements:

• Bachelor’s of Science in Computer Science or equivalent work experience plus CISSP certification or obtainment of within 18 months of start date and a minimum of six years experience in applications engineering focusing on the delivery of secure systems.
• Experience developing in a some of the following languages: VBA, ASP, ASP.NET, Perl, C#, Java, XML, Python, Ajax, Google GWT or Yahoo YUI.
• Inner workings and security aspects of variety of Applications such as: Servers (Weblogic), Web Servers (Apache, IIS), Database Servers (Oracle, MS SQL).
• Strong knowledge of Microsoft Office products especially MS Excel, MS Word and Visio is desired.
• Preferred that the candidate have hands-on experience performing application security assessments using business-class assessment tools including static code analyzers (e.g. Fortify, Ounce), web vulnerability analyzers (e.g. AppScan, WebInspect), platform vulnerability scanners (e.g. Qualys), Nessus, as well as manual techniques for evaluating logic flaws. Manual code reviews would be nice.
• Excellent technical writing, documentation development, process mapping, and visual communication skills.
• Excellent interpersonal and verbal communication skills.
• Strong knowledge of Microsoft Office products especially MS Excel, MS Word and Visio is desired.

If you are interested in discussing these positions, please reply to this message with a convenient time and number to call for a brief conversation about what Target Labs can do for you.. Please attach a copy of your resume, in Word, to your reply.

Please send me an invitation to link on LinkedIn:

Again, please also consider friends and colleagues who may benefit from receiving this announcement.

Thank you for your interest in Target Labs, I look forward to speaking with you soon.


Kelly Collier
Account Manager
Target Labs, Inc.
Specialized IT Consulting Services
Direct: 202-422-8766 | Fax: 703-891-9091
The Green IT Services Firm,
100% Wind Powered, Carbon Free IT Professionals

Options: ReplyQuote
Re: Jr. Application Security Engineer needed in the DC area
Posted by: sleekMak
Date: April 06, 2010 04:18AM

I would like to discuss on the topics. meromarqu [at] g m a i l dot com

Options: ReplyQuote

Sorry, only registered users may post in this forum.