信息来源:
原始连接:
北京 国际安全公司安全顾问
让你心动的年薪, 接触目前最火的安全技术, 你还犹豫.....
Job Description/Responsibilities:
Conducting security assessments using black box and white box methodologies, the candidate will be asked to participate in application threat modeling and design reviews by contributing key learning’s from audits. Additionally the candidate must provide security consulting expertise to application development teams throughout Microsoft. The candidate will also be responsible for managing reports of security vulnerabilities and assessing their severity level, driving them to resolution, and escalating them up the chain of authority as necessary.
工作说明责任:
用黑盒和白盒测试方法学指导安全评估,应聘者通过旁听学习参与应用威胁模型和设计回顾。另外,应聘者必须具备对微软公司应用程序开发的安全顾问经验,应聘者将负责管理安全缺陷报告和评估激烈程度,促使他们去解决,升级他们的权利链。
Qualifications:
Candidates must have a proficiency in various programming languages and development platforms including VB, VB.NET, C#, ASP and ASP.NET. They must demonstrate a minimum of 2 – 3 years of experience developing software for the Microsoft platform. Be able to relate the details of security bugs and design remedies to application development teams with clarity and concision. Be familiar with well-known attack types such as cross-site script, SQL injection, buffer overflows, etc. Additionally, knowledge of secure protocols and cryptographic concepts considered a plus. The candidate must demonstrate an understanding of network architecture and appliances, including routers, firewalls, load balancers, et cetera. A BA/BS in Computer Science, MIS, or related field is preferred and certifications such as CISSP, MCSE are considered a plus.
资格/条件:
应聘者必须熟练多种程序设计语言和开发平台,包括VB,VB.NET,C#,ASP和ASP.NET。他们必须具有2-3三年以上的微软平台的软件开发经验。能对应用程序开发团队叙述安全臭虫和设计补救的细节。熟悉常见的攻击方式,如跨站脚本,SQL注入,缓冲区溢出等。另外,安全协议和密码概念的知识被附加考虑。应聘者必须证明明白网络体系结构和电器用具,包括路由器,防火墙,负载平衡器等等。BA/BS在计算机科学,MIS或者相关领域是首选的和证明,如CISSP,MCSE被附加考虑。
赶紧联系
Daly Chen
Mail:dachen@tonykeith.com
Mobile: (86) 135 0123 6815
Office: (8610) 8580 8080 ext 103
------------------------------
试着翻译了一下,当然很垃圾
