New job
Matthew Liptak 19,000+ DC
LinkedIn Following |
Matthew Liptak 19,000+ DC posted a job: "Are you a good fit for this job? Dynamic Scan Operator in Burlington, MA We are looking for professionals with experience programming and or reviewing code in several of C, C++, C#, .NET, Java, PHP, Objective-C, ColdFusion and/or Ruby on Rails as well as application security experience. The Dynamic Scan Operator will work in the Center for Software Assurance within the service delivery team with the following specific responsibilities: Review security issues identified in applications through static binary analysis and dynamic analysis (automated web application scanning). This will include confirming the existence of software coding errors in several of C/C++, C#, .NET, Java, PHP, Objective-C, ColdFusion and/or Ruby on Rails (including deployed web applications). Determine commonly occurring trends in engine and scan accuracy and provide feedback to the engine and scripting teams. Achieve acceptable levels of analysis quality and throughput, as defined by internal operations metrics, and adhere to internal company security policies and procedures in delivering against job function. Interact with customer support and customers directly as needed to assist them in understanding security flaws reported and answering questions on remediation strategies Augment the Application Security Research Lab, Engineering and QA resources as needed to assist with test case creation or to investigate new threat spaces and attack vectors. Participate in internal user acceptance testing for new product releases, and assist with QA efforts as needed Handle internal escalations from Security Analysts 1 and provide mentorship to junior team members Work with service delivery management to determine operational efficiency requirements and develop and enhance operations and delivery processes and procedures. This role is available for a traditional Monday through Friday or as a schedule that encompasses two weekend days and two weekdays. Skills/Requirements Bachelors degree in Computer Science or related discipline Proficient in several of C/C++, C#, .NET, Java, PHP, Objective-C ColdFusion and/or Ruby on Rails (multiple languages a plus) Strong analytical, organizational, and technical writing skills Self-motivated, results driven, and able to work effectively in a team/operations environment. Ideally candidates would also have: 1-2 years of development experience involving secure coding practices as part of the software development lifecycle, or equivalent exposure to static code analysis. Solid understanding of secure coding practices and dynamic testing (web application testing), with experience identifying and remediating security vulnerabilities is a plus car...@veracode.com http://bull.hn/l/KA1A/6" |
|
Don't want to get activity notifications: Change your following people settings » Learn more about following people's activity LinkedIn values your privacy. At no time has LinkedIn made your email address available to any other LinkedIn user without your permission. ©2012, LinkedIn Corporation. |
Matthew Liptak 19,000+ DC
LinkedIn Following |
"Are you a good fit for this job? QA Engineer in Burlington, MA We are looking for QA professionals with experience programming and or reviewing code in several of C, C++, C#, .NET, Java, PHP, Objective-C, ColdFusion and/or Ruby on Rails as well as application security experience. The QA Engineer will work as a member of the QA team with the following specific responsibilities: Review security issues identified in applications through static binary analysis and dynamic analysis (automated web application scanning). This will include confirming the existence of software coding errors in several of C/C++, C#, .NET, Java, PHP, Objective-C, ColdFusion and/or Ruby on Rails (including deployed web applications). Determine commonly occurring trends in engine and scan accuracy and provide feedback to the engine and scripting teams. Achieve acceptable levels of analysis quality and throughput, as defined by internal operations metrics, and adhere to internal company security policies and procedures in delivering against job function. Review nightly automation results relating to scan quality and accuracy, filing thorough bug reports as needed Assist with test case creation and investigate new threat spaces and attack vectors. Skills/Requirements Bachelors degree in Computer Science or related discipline Proficient in several of C/C++, C#, .NET, Java, PHP, Objective-C ColdFusion and/or Ruby on Rails (multiple languages a plus) 2+ years experience as part of a QA team Strong analytical, organizational, and technical writing skills Self-motivated, results driven, and able to work effectively in a team/operations environment. Ideally candidates would also have: 1-2 years of development experience involving secure coding practices as part of the software development lifecycle, or equivalent exposure to static code analysis. Solid understanding of secure coding practices and dynamic testing (web application testing), with experience identifying and remediating security vulnerabilities is a plus http://bull.hn/l/KAN2/6" |
Matthew Liptak 19,000+ DC
LinkedIn Following |
"Are you a good fit for this job? Security Consultant in Burlington, MA Veracode is seeking a motivated and energetic individual who is interested in working customer security professionals and software developers to improve application security in a measurable way. The Security Consultant will focus on training developers and security teams on application security best practices, by providing code-level remediation advice on potential application vulnerabilities that were identified by the Veracode service. As a Veracode Security Consultant, you will: Be a subject matter expert in application security and provide consultative services to Veracode customers Introduce customers and prospects to the use of the Veracode service Interact with a variety of customer personnel, ranging from software developers to security executives Have excellent technical skills and communication skills Help users and various stake-holders within the customer organization interpret results from the Veracode service, and tailor the presentation to the appropriate audience Participate in the sales efforts as needed when technical capabilities of the service are presented Become an active participant and trusted advisor throughout the customer SDLC Work with the Veracode product strategy team to file and track customer enhancement requests Train and mentor new employees This position requires a motivated individual that strives to find solutions that align with client needs while providing a repeatable solution(s) that can be reused across multiple programs. It will require constant and effective communication with internal/external cross-functional teams. This individual will have the opportunity and freedom to cultivate new and innovative solutions which will benefit our entire client base. Skills/Requirements BS/BA in Computer Science, Engineering or related field, or equivalent experience. 2+ years of recent software development experience. Understanding of Application-level security and secure coding practices. Proficiency in one of more of the following programming languages: C, C++, C#, Java, or PHP Hands-on experience with one or more of the following: Visual Studio or Eclipse Bugzilla or Jira Hudson, Jenkins, or Cruise Control Archer SAML/SSO VMware Databases Command Shell scripting Client requirement gathering, prioritization and scoping experience. Strong technical writing skills. Strong oral communication skills in English and good presentation/teaching skills. Excellent problem-solving and organizational skills. Ability to apply these skills cooperatively in a collaborative team environment. Additional Skills & Experiences: Familiarity with CVSS, CWE, OWASP, WASC and SANS-25. Experience with source code analysis and interactive application security testing products. Understanding of common risk mitigation practices and technologies such as firewalls, ACLs and multi-factor access controls. SaaS, Professional Services and/or professional Training/Mentoring experience also desired. http://bull.hn/l/KAPJ/6" |