Hosting Provided By

Sr. Security Signature Engineer - Austin, TX

From: Rob Needham <rob(at)nhrg.com>
Date: Thu Jul 17 2003 - 15:00:41 EDT

('binary' encoding is not supported, stored as-is)

In this position, the engineer is primarily responsible for analyzing security vulnerabilities and writing attack filters. The engineer will also assist with penetration testing of the product line, and with the design and development of advanced security features. This is a senior level technical position with a highly competitive compensation package.

Position Requirements
· Fundamental knowledge of the security industry. Must be familiar
with security technologies in general, and how to deploy and manage firewalls and intrusion detection systems in particular. Real world experience working as an IDS analyst and/or enterprise security administrator is a plus. Real world experience designing IDS signatures is a plus. Experience working as a developer on a shipping product is a plus.

· In-depth knowledge of TCP/IP networking. Must be able to
demonstrate technical understanding of all layers of the protocol stack, including mastery of IP and TCP and familiarity with major applicationlayer protocols such as SMB, HTTP, SMTP, and DNS. Must be able to read and understand a packet trace.

· In-depth understanding of a variety of network attacks. Examples
are buffer overflows, reconnaissance scanning, denial of service attacks and evasive methods attackers use to avoid detection. Must be able to demonstrate a minimum level of familiarity with well-known vulnerabilities and exploits.

· Comfortable researching vulnerabilities by reading source code
written in a variety of languages including C, perl and python. Assembly language skills a plus. Capable of building a network test environment and performing black box analysis to learn the behavior of a vulnerability. VMware experience is a plus. Custom (self-written tools) penetration testing experience is a plus.

· Solid programming skills in at least one language. Must be able
to program productively at a practical level of sophistication in at least one language of the candidate's choosing. Must be able to build solid, well-documented development and testing tools.

· Preference will be given to candidates with Master's degrees and
higher in relevant technical fields. However, there is no hard minimum education requirement, and all applicants are invited to submit a written technical analysis of any remote security vulnerability in order to showcase their abilities and distinguish themselves from other candidates. SANS GIAC certification is a plus.

Rob Needham

NHRG, Inc
2009 RR 620 N, Suite 113
Austin, TX 78734

(512) 328-4448 (office)
(888) 373-4810 (toll-free)
(512) 328-1696 (fax)

rob@nhrg.com Received on Thu Jul 17 15:30:31 2003

Do you need help?

This message: [ Message body ]
Next message: rrosler(at)deloitte.com: "Deloitte & Touche - Identity Management - Manager - Atlanta"
Previous message: rrosler(at)deloitte.com: "Deloitte & Touche - Peoplesoft or SAP Security Senior Manager - Atlanta, Nashville, Miami, Charlotte"
In reply to Amber Nelson: "WANTED: Sr. Network Security R&D Engineer - Austin, TX"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:30 EDT