Friday, November 30, 2012

Security Jobs: NYC, Information Security Specialist, Application Security, Incident Response, Pen Testing

Information Security Specialist: Application Security, Incident Response, Pen Testing has been engaged to locate and deliver a deeply talented information security professional who has deep experience in: Incident Response, Application Security and Penetration Testing.

Our client is a financial services organization in New York City that manages in excess of $25 Billion in assets. This organization is lightly regulated and his highly entrepreneurial. The cyber security professional who takes on this role will be trusted to build several information security programs from the ground up and will be given significant autonomy to deliver results based on sound business need rather than basing need on the way a regulation reads.
From the outset of employment, the new information security specialist will focus on building an Incident Response program and they’ll also focus on adding onto an existing Application Security program. The information security specialist will need to have hands-on penetration testing experience in order to manage penetration testing efforts but they’ll likely not invest much of their personal time actually doing pen testing.

A significant part of this role is that of understanding attacks and corresponding mitigation techniques. The information security specialist will be the firm’s eyes and ears when it comes to staying abreast of emerging threats and attack trends as well as the current state of academic research related to threats and state-of-the-art commercial products designed to mitigate threats.
Relocation is possible as is an H1B transfer for an existing H1B visa holder.

A successful candidate for this role will:

• Possess 7-10 or more years of information security background
• Demonstrate hands-on programming experience to support one’s application security expertise. A background in Java, J2EE is preferred.

• Demonstrate experienc with tools such as AppScan, Fortify, WebInspect, etc.

• Likely have a BA/BS and/or a Master’s degree
• Be a student of their profession by way of carrying certifications such as: CISSP, CSSLP, C|EH, GCIH, GWAT, etc.

• Demonstrate experience with Incident Response activities
• Demonstrate experience with Penetration Testing

• Demonstrate experience with Threat Modeling and Attack Trends
• Demonstrate the ability to lead by influence. This is both a hands-on role and a thought leadership role for the firm around information security topics.

Because our client’s environment is not highly regulated the successful candidate will possess exceptionally strong verbal and written communication skills required to communicate risk and proposed mitigation strategies to business stakeholders and other technical staff.
Information Security Specialist, Application Security, Incident Response, Pen Testing
Location: NY-New York
Compensation: $200,000+ Package with Base and Bonus
Relocation: Yes
Visa Sponsorship: H1B Transfer possible
Education: BA/BS and/or Master’s preferred
Certification: CISSP, CSSLP, C|EH, GCIH, GWAT or similar preferred

New York City Security Jobs, Application Security Jobs, Incident Response Jobs, Penetration Testing Jobs's Security Recruiter Blog