Job Description

Position: Security Analyst

Location: Columbia, SC 29210

Duration: 12 Months

Position Description: Previous experience as a principle level object oriented developer with in depth knowledge of software development security principles. In depth knowledge of the Windows kernel and developing Windows based device drivers. You will assist in the design, develop, and implementation of systems security for our existing production systems (Primarily Windows Based).

Requirements:
• Bachelor’s degree in computer science or related discipline, Master’s degree preferred.
• 5+ years of professional software development experience. More is better.
• Strong knowledge and skills in Windows databases, optimizing queries, SQL Injection attacks, OWASP Top 10 remediation techniques, and ensuring sensitive data is secure in use, transit and at rest.
• Strong knowledge and skills in Windows internals, debugging and reverse engineering.
• Strong knowledge of Windows Security such as Token / Privileges /SID /ACLs /Group Policy /Active Directory.
• Demonstrated ability to design software and systems solutions, securely.
• Ability to work collaboratively in a small close-knit team and have good communication skills.
• Security expertise. Experience building secure code, penetration testing, and reverse engineering malware.
• Experience with Windbg, ollydbg, metaspolit, wireshark, burp suite, and other security tools.
• MS Visual Studio, XML, XHTML, ASP.NET, C++, J#, etc.
• Experience building and securing Enterprise software products.
• Have worked in an Agile development environment with Scrum.
• Solid understanding of industry best practices for securing systems, secure systems design, security testing, and implementation.

Skills:

• Software development

Reverse Engineering

• Application Security

• burp suite

• information security principles and practices

• Malware

• metaspolit

• ollydbg Yes

• optimizing queries

• OWASP Top 10 remediation techniques

• Penetration Testing

• Security - Knowledge in networking, databases, systems and Web operations

• Security Information Architecture

• SQL Injection attacks

• Windbg

• Windows - SID

• Windows Security - Privileges

• Windows Security - Token

• Windows Security - ACL

• Windows Security - Group Policy

• wireshark

• IT Security

• Active Directory

• Information Security

• Security Program evaluation

• Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures.

• Network security

• Windows

• Agile/Scrum Methodology

• C/C++

• J#

• Visual Studio

• XHTML

• XML

Qualifications

Additional Information

Ask IT Consulting Inc.| 33 Peachtree St., Suite 100 |Holtsville, NY 11742

Website: http://www.askitc.com/