[ISSA_Brasil] ISSA BRASIL - BOLSA DE OPORTUNIDADES

Jaime Orts Y Lugo ortsylugo em gmail.com
Quinta Maio 28 20:35:13 -03 2015 

Pessoal, ... segue oportunidade para área de “testes de invasão”.

Os interessados devem entrar em contato diretamente com
<mailto:hernan em talentpaprika.com> hernan em talentpaprika.com  or through Skype
(hernan.facal1).

 

Grande abraço e boa sorte!

 

 

Client: IT Company.

Location: Jardim Sao Luis, SP. Brazil.

Role: Security Penetration Tester. 

Type of Contract: CLT/ PJ.

 

 

Job duties:

 

Perform security assessment services, which includes: vulnerability
scanning, network security testing, web application penetration testing and
source code review.

 

Be comfortable creating realistic Proof of Concept (PoC) demonstrations in
reports, retesting the findings that have been fixed and republishing
reports to indicate the results of retesting.

 

Participate in project team activities, such as: communicating with project
managers and developers, performing analysis, authoring reports and
presenting them to project managers and/or application owners, reporting
status, and tracking hours.

 

Maintain up-to-date knowledge of threats, countermeasures, security tools,
testing techniques and security research.

 

 

 

Required skills and knowledge:

 

 

Hands-on involvement in network, web application and mobile application
penetration tests.

 

A strong background in network and web security, protocols and secure
software development

 

Thorough understanding of software vulnerabilities.

 

Experience with security-related open source (and commercial) tools – Kali,
BackTrack, etc.

 

Hands-on experience with vulnerability scanners. Preferred: IBM Security
AppScan Standard and Enterprise versions.

 

Familiarity with various network architectures, web-based programming,
network services and devices.

 

Programming or scripting capabilities is a bonus.

 

Knowledge of industry accepted standards including OWASP, PTES, NIST and
OSINT penetration testing frameworks.

 

Experience with Payment Card Industry Data Security Standard (PCI DSS).

 

Advanced multi-tasking and time management skills.

 

Work independently without detailed guidance.

 

Excellent verbal and written communication skills in English – Be
comfortable explaining findings and recommendations to technical and
non-technical audiences.

 

Proficient in writing executive level reports and technical documentation.

 

Bachelor's degree from an accredited university.

 

Security-related certifications are a plus

 

 

If you believe this is an opportunity for you, please send me your complete,
updated English resume with your Skype user to
<mailto:hernan em talentpaprika.com> hernan em talentpaprika.com  or through Skype
(hernan.facal1)

 

 

 

 

Thank you | Obrigado | Gracias.

 

 

 

 

-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://issa.org.br/pipermail/associados_issa.org.br/attachments/20150528/8abce961/attachment.htm>

Mais detalhes sobre a lista de discussão Associados