| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 21 Apr 2008 09:19:04 -0400
From: "Lindley James R" <James.R.Lindley@....gov>
To: <dailydave@...ts.immunitysec.com>,
<full-disclosure@...ts.grok.org.uk>
Subject: Employment Opportunities for Java/.NET
Programmers and pen-testers
Employment Opportunities for Java/.NET Programmers and pen-testers
The Internal Revenue Service IT Security Architecture and Engineering's
Advanced Technical Analysis Team (ITSAE@@) has "Immediate Hire"
authority to hire programmers who have very competent to outstanding
skills in Java or .NET environments and equally qualified penetration
testers.
Programmers would be trained in application security using the a
combination of their skills and the latest static source code analysis
tools (Fortify, Ounce Labs, Klocwork, Code Sonar).
Pen-testers would focus on dynamic application-focused testing using a
combination of their skills and the latest application-focused
penetration tools (Hailstorm, Metasploit, etc.).
ITSAE provides security architectural and engineering support to the
project teams working on hundreds of annual IT project at the IRS. We
focus on creating the security that the FISMA certification and
accreditation process documents. We are NOT a documentation team, but
work directly with IT project teams to provide knowledge,
recommendations, and risk assessments. If you've ever wanted to do
security engineering that actually results in improved security, this is
it!
ITSAE is in the process of standing up an Advanced Technical Analysis
Team, whose purpose will be to provide "in-development" and
"pre-implementation" security artifact assessment, analyzing software
architectures and implementations from requirements through design, tool
and product specification, coding, installation, and user configuration.
This Team will perform static source code security assessments,
application focused penetration testing, recommend architectural and
implementation mitigations, and assess residual risk in finished
products.
This is a very collegial organization of highly skilled individuals
where knowledge is the "coin of the realm." We may be the highest
ranking collection of non-manager wire heads and bit-twiddlers in the
IRS and maybe the whole federal government.
The truth of the above statement is reflected in the hiring levels for
the positions mentioned above. We are looking for two GS-14s and two
GS-15s with hiring level determined by applicant skill levels. The
normal federal employment background check is required.
Work location would be at the New Carrollton Federal Building (NCFB) in
Lanham, Maryland. The complex is directly adjacent to the Washington
New Carrollton Metro Station. The job includes a Public Transportation
Subsidy Program.
Resumes should be submitted ASAP to James.R.Lindley@....gov.
Thanx for your time.
JimL
James R Lindley
Senior Computer Engineer
CISSP-ISSAP/ISSEP/ISSMP, CISA, PMP, CHS-III, CNE,
SSE-CMM Appraiser, MCSE, MCT, CNSS 4013, A+
IT Security Architecture and Engineering
MITS System Integration
An unquenchable thirst for Pierian waters.
James R Lindley
Senior Computer Engineer
CISSP-ISSAP/ISSEP/ISSMP, CISA, PMP, CHS-III, CNE,
SSE-CMM Appraiser, MCSE, MCT, CNSS 4013, A+
IT Security Architecture and Engineering
MITS System Integration
OS:CIO:ES:SI:SE:SA
Cube: NCFB C6-462
Cube: 202-283-1590
Cell: 410-703-4127
An unquenchable thirst for Pierian waters.
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists