Title: Security Consultant
Position Location:San Francisco, CA
Position Type:Contract or Full-time
Reports to: Managing Consultant
Experience: 3 years +
General Responsibilities:
As Client engages with clients in the application of our software security improvement methodologies, the Security Consultant joins in the execution and delivery of planned project deliverables and milestones that assist clients in learning, understanding, and applying Client's secure software development methodologies. The Consultant typically has task responsibility within one project and develops the capability to perform tasks within one or more of Client's security practices. The Consultant continuously learns and expands his/her technical competence. Consultants do some work from our headquarters, but often go on site to help customers exterminate the bugs and untangle the flaws that make their systems insecure. Our consultants make themselves and their team indispensable advisors to our customers: they build the relationships that help create and identify follow-on assignments.
Roles:
Source Code Analysis
Software Penetration Testing
Architecture Security Analysis
Secure Software Design and Architecture
Application Reverse Engineering
Network Security Analysis
Database Security Analysis
Qualifications:
Technical skills:
Familiarity with software security weakness, vulnerability and secure code review a plus
Familiarity with software attack and exploitation techniques a plus
Familiarity with at least one software programming language and framework a plus
Consulting skills:
Ability to interface with clients, utilizing consulting and negotiating skills
Ability to undertake and complete tasks independently, meet schedules and delivery timelines, and to move swiftly from concepts and theory to action
Team-oriented skills:
Ability to collaborate with project team members, take direction from the project lead and execute tasks consistently
Project Management:
Awareness of end-to-end project management life-cycle including planning, execution and closeout
Communication:
Written communication skills for use in preparing formal documentation, Statements of Work, proposals, white papers, and case studies
Verbal skills that include the ability to clearly articulate thoughts and to deliver presentation and training to all levels of management
Ability to persuade
Demeanor:
Enthusiasm and commitment along with professional interpersonal skills and an entrepreneurial drive
Willingness to travel
Education and Experience:
BS in CS, Engineering or equivalent. MS preferred.
Software Experience with C/C++, .NET, Java, multiple OS and RDBMS
Experience with other languages (e.g. JavaScript, Python, Ruby, PHP, Perl, COBOL, SQL, or Assembly) (Desired)
Experience conducting secure code review a plus
Experience conducting reverse engineering a plus
Experience performing web application penetration testing a plus
Government consulting experience a plus
Experience in Certification and Accreditation a plus