Information Security Engineer, Application Security and Penetration Testing
San Francisco Bay Area, US - Information Technology and Services
Description
Information Security Engineer, Application Security and Penetration Testing
LinkedIn is looking for a motivated Information Security Engineer to be an integral part of our house information security team. This team is responsible for protecting our infrastructure, applications, and, most importantly, our members. This candidate will be particularly responsible for identifying new vulnerabilities and responding to existing vulnerabilities within the organization.
Responsibilities:
Research threats and attack vectors that impact LinkedIn's applications and infrastructure.
Assess new and existing applications and system deployments for vulnerabilities and design flaws, and prioritize remediation efforts based on risk.
Evaluate new products and technologies, including potential acquisitions.
Seek and destroy latent pockets of vulnerability and security weakness wherever they may be.
Devise and bolster defenses through secure-by-default frameworks, architectures, and processes.
Educate and advocate for security improvement throughout the LinkedIn ecosystem.
Build testing tools and platforms to encourage reusable and measurable approaches to assessment.
Respond to external vulnerability researcher inquiries and vulnerability reports.
Requirements:
Demonstrated experience and detailed technical knowledge in application security and development.
Experience with web application assessment, network penetration testing, and vulnerability research.
Degree in Computer Science or equivalent with at least 5 years̢۪ hands-on experience in security solution/implementation.
Extensive experience and expertise in security management, auditing methodology, and technology risk assessments.
Experience with commercial and/or open source security assessment tools.
Proficiency in JavaScript, Python, or Ruby, or equivalent programming knowledge in C or C++.
Ability to document and explain risks and vulnerabilities to technical stakeholders.
No salary provided
Posted March 25, 2015 at 12:57PM from LinkedIn http://ift.tt/1btGaHm
via IFTTT
No comments:
Post a Comment