Software Security Consultant

Company: Cigital, Inc.


General Information
  • Job Type: Full-time
  • Location: Atlanta, GA
  • Educational Requirements: Bachelors Degree
Qualifications:

Cigital is looking for a full-time or contract Associate Security Consultant based in Atlanta, Georgia - to parachute in wherever software insecurity invades, and to stomp out bugs and flaws wherever they hide.

About Cigital:

Cigital, Inc. is the leading software security and quality consulting firm. Established in 1992, Cigital plans and implements initiatives to help ensure customers have secure, reliable applications.  We improve how they build and deploy software, and we have fun doing it. The daily news gives you a taste of what companies face, but if you're in our field you get to see how serious these problems really are.  Whether they're banks, TV networks, or game designers - when businesses get serious about software security, they call Cigital.

General Responsibilities:

As Cigital engages with clients in the application of our software security improvement methodologies, the Associate Security Consultant joins in the execution and delivery of planned project deliverables and milestones that assist clients in learning, understanding, and applying Cigital's secure software development methodologies. The Consultant typically has task responsibility within one project and develops the capability to perform tasks within one or more of Cigital's security practices. The Consultant continuously learns and expands his/her technical competence. Consultants do some work from headquarters, but often go on site to help customers exterminate bugs and untangle the flaws that make their systems insecure.  Our consultants make themselves and their team indispensable advisors to our customers: they build the relationships that help create and identify follow-on assignments.

Roles may include:

*    Source Code Analysis
*    Software Penetration Testing
*    Architecture Security Analysis
*    Secure Software Design and Architecture
*    Application Reverse Engineering
*    Network Security Analysis
*    Database Security Analysis

Qualifications:

*    Technical skills

    o    Familiarity with software security weakness, vulnerability and secure code review a plus
    o    Familiarity with software attack and exploitation techniques a plus
    o    Familiarity with at least one software programming language and framework a plus

*    Consulting skills

    o    Ability to interface with clients, utilizing consulting and negotiating skills
    o    Ability to undertake and complete tasks independently, meet schedules and delivery timelines, and to move swiftly from concepts and theory to action

*    Team-oriented skills

    o    Ability to collaborate with project team members, take direction from the project lead and execute tasks consistently

*    Communication

    o    Written communication skills for use in preparing formal documentation.
    o    Verbal skills that include the ability to clearly articulate thoughts and to deliver presentation and training to all levels of management
    o    Ability to persuade

*    Demeanor

    o    Enthusiasm and commitment along with professional interpersonal skills and an entrepreneurial drive
    o    Willingness to travel 20-50%

Education and Experience:

*    BS in CS, Engineering or equivalent. MS preferred.
*    Experience with C/C++, .NET, Java, multiple OS and RDBMS
*    Experience with other languages (e.g. JavaScript, Python, Ruby, PHP, Perl, COBOL, SQL, or Assembly) (Desired)
*    Experience conducting secure code review a plus
*    Experience conducting reverse engineering a plus
*    Experience performing web application penetration testing a plus
*    Consulting experience a plus

 

How to Apply: Pull out the stops and email a resume to mdoyle@cigitalstops.com