Application Security Consultant - Dulles, VA

Application Security Consultant  Dulles, VA $90-$100K base salary Travel up to 40% required. US citizens only.

Typical activities include:
Identifies technical strategies for ensuring client's software applications are secure.
Meeting with client's technical staff to understand the architecture of the application.
Software source code reviews using automated vulnerability testing tools and manual review of code.
Performing application security audits.
For example, an Application Security consultant may work with a Stock Brokerage firm to ensure their online trading application written in J2EE with an Oracle backend is secure from common vulnerabilities such as buffer overruns, cross-site scripting attacks and SQL injection attacks.

Required Experience:
Experience working as an Application Security consultant (NOT a network engineer) for mission critical applications for large corporate or government clients.
Experience assessing security issues, managing technology risks and interfacing with customers.
Ability to: (1) apply security principles to new technologies and a broad variety of environments (UNIX, Windows, Client-Server, Web, Wireless) Experience in several of the following technical areas: C, C++, Java, Smalltalk, COBRA, RMI, system architecture, protocol analysis, software design, system analysis, and cryptography. Strong familiarity with authentication, authorization, access control detection and auditing. Understand common application vulnerabilities including buffer overruns, cross-site scripting attacks and SQL injection attacks.

Bachelors degree in Computer Science, Electrical Engineering, Mathematics (cryptography interest), Security Engineering or Software Engineering. Travel to client sites is required.

-- 
Jeff Combs	
Alta Associates, Inc.
908-806-8442
908-806-8443 fax
jeff@altaassociates.com
visit us at www.altaassociates.com