---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Engineer
Location: Chennai, Tamil Nadu, India
Type: Permanent F/T
Closing Date: 2008-03-27
vulnerability assessment for all Internal Web Applications
across Infosys by manual and also using various open/closed
source assessment tools (including Spi dynamics WebInspect,
Watchfire AppScan, FxCop, Achilles, WebScarab).
Vulnerability Assessment includes Application audit,
Deployment audit, Virus Upload, Manual Penetration testing,
Ethical Hacking, Blackbox testing on all web applications
which are going to release on Intranet, Extranet and DMZ.
Assisting development teams for fixing up the
vulnerabilities.
Automation of System Audits by writing up windows scripts.
Reviewing and subsequent maintenance of Security Awarness
Reviewing and subsequent maintenance of Intranet web site by
developing new portals like Vulnerability Reporting System,
System Audit Track, Network Vulnerability Assessment. Etc
using Asp.Net, VB.Net and SQL Server as backend database.
Involved in Product review and Evaluation of Application
Security tools like AppScan, WebInspect, Ouncelabs, Fortify,
Cenzic.
JOB REQUIREMENTS
---------------------------------------------------
Languages Sun Java v1.4, CORBA, MS Visual Basic 6.0.
Scripting Languages HTML, DHTML, VB Script, Java Script,
XML.
Java Technologies JSSE, JCE, Sockets, Applet, JDBC, RMI,
Servlets, J2EE.
Relational Database Management System MS SQL Server 7.0,
Oracle 9i, PostGre SQL 7 and MYSQL 2.23.
Operating System MS Dos, Windows 9x,Windows 2000,Windows NT
Server 4.0,
Linux Flavors ( Red Hat 9 , Fedora core 3 )
OPEN Sources Frameworks JPOX, Hibernate
OPEN Sources Tools OSSIM ( Open Source Security Information
Management Correlation &
Qualification Engine )
Vulnerability Assessment Tool
Nessus, Found stone, ISS, MBSA
Scanner
Metasploit Framework, Nmap, Whisker, Nikto, CURL
Intrusion detection Tool
SNORT
Net Mapper
Ntop
Network/Sniffer/Packet analyzer
Ethereal
Ettercap
Exploit Tools
Hydra (Multi purpose bruteforce)
Panther2, SARA (Denial of Service)
Commercial Tools Database vulnerability Assessment
NGS Squirrel
Web Application Vulnerability Assessment
SPI Dynamics - Web Inspect
CONTACT
---------------------------------------------------
Please reach me at 044-22546000 X:1431 or mail me at
sjairajan inautix.co.in.
iNautix Technologies
Swetha J
Human Resource
sjairajaninautix.co.in
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.security
focus.com/jobs
|