search > Los Angeles jobs > Los Angeles computer/technical

Posted: Friday, March 10, 2017 4:08 PM

Job Description:/h3:
Senior Analyst : Testing Information Security needed in Culver City, CA

Identify technical security issues and weaknesses and design solutions to prevent future re:occurrences. Conduct technical consulting where appropriate to different lines of business and IT. Advise internal lines of business, IT partners, and third parties on how to remediate technical security issues and verify remediation activities.
Responsible for in:depth technical security testing of company websites, network infrastructure, and applications using a combination of automated and manual commercial/open:source tools. Responsible for technical and executive level reports on identified security issues.
Design, document, and implement technical information security processes, procedures, guidelines, and solutions.
Serve as an internal information security consultant to the organization. Assist in the review of applications and/or technology environments to assess information security risk.


CEH (Certified Ethical Hacker) or equivalent web/application security testing qualification
CISSP (Certified Information Systems Security Professional)
IT/Security Vendor Certifications (e.g. Cisco, Microsoft, RSA)
GIAC/ GSEC (Global Information Assurance Certification : Security Expert)
GIAC/ GCIA (Global Information Assurance Certification : Certified Intrusion Analyst)
3 years of security testing
2 years of secure development
1:2 years of hands on application and infrastructure security
Total experience typically 3:5 years in a minimum of 2 of the above areas working within a Security vendor or consultancy practice
Knowledge of:
White Box or Black Box penetration testing experience. Knowledge in both types of testing environments is essential.
Event logging infrastructures such as Elasticsearch.
Existing and emerging techniques used by malware.
Security hardening techniques for Server OS (Windows, Unix and Linux), Databases (MySQL, Oracle, MS SQL), and Application Servers (JBOSS, WebSphere).
Computer, systems and network architecture; operating systems, virtual environment, and networking protocols.
Compiled and interpreted programs, for example: database systems, web Servers, application Servers, mainframes, Firewalls, Routers, load balancers, Switches, and different types of Middleware.
Skill In:
Using commercial and open source security testing tools. (HP
Reading and writing queries for logging infrastructures
Reverse engineering complex code, using tools such as IDA Pro, OllyDBG and other similar tools.
Programming in 2 or more of the following; C, Java, .Net, SQL.
Shell scripting in 2 or more of the following; Perl, BASH, Python, Powershell, PHP, WMI, SED.
Reviewing application source code for security vulnerabilities.
Using debuggers and/or decompilers.
Ability To:
Take on new responsibilities and influence others as needed to deliver consistent results.
Learn new skills through self:learning and on the job training.
Demonstrate strong verbal communications skills and concise written communication skills.
Demonstrate strong organizational and attention to detail skills.
Manage competing priorities while maintaining organized and detailed reporting of status and progress.
Company Description:/h3:
Founded in 2001, Odesus is an Information Technology Consulting and Staffing Firm. Over the course of the past 14 years, Odesus has established itself as one of the premiere firms providing services to banking, financial, entertainment and insurance clients, among other industries. Our business model is designed to provide services to a few premiere clients in a joint partnership to enhance performance and delivery. Today, the Odesus model has evolved so that we are a complete solutions provider focused on the deployment of IT professionals in a rapid and efficient process.


• Location: Los Angeles

• Post ID: 104175148 losangeles is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2017