由买买提看人间百态

boards

本页内容为未名空间相应帖子的节选和存档,一周内的贴子最多显示50字,超过一周显示500字 访问原贴
Security版 - 内推上市公司Application Security Engineer
相关主题
Open Position - Research Scientist at McAfee Inc. (转载)The Internet’s Not Finished Yet
handbook of applied cryptographyKnow your enemy III
How about "Quantum Cryptography"ftpd vulnerability
Please help!BugTraq是什么东西?
Re: 有载国外搞安全的大虾吗?介绍一下哪些学校安全比较?Help! I was hacked...
Triple DES 有什么弱点?发现virus/vulnerability
都是谈论病毒,没有做加密的吗?[转载] *Another* severe IE Security vulnerability found
请问哪里有关于encryption/decryption的相关学习资料Looking for security researchers
相关话题的讨论汇总
话题: security话题: experience话题: engineer
进入Security版参与讨论
1 (共1页)
T***I
发帖数: 372
1
Our Information Security (Infosec) Team is responsible for the security of
company's people, infrastructure, and customer deployments around the globe.
Infosec Engineers are highly motivated team players with a dedication to
security and technology. They thrive on solving problems and tackling new
challenges.
As an Application Security Engineer, you will act as both a builder,
creating tools to help our engineers write more secure code, and a breaker,
performing penetration tests of internally developed applications.
RESPONSIBILITIES
Consult with internal teams to assist in design, threat modeling, and
reviewing security-critical code
Conduct periodic penetration tests of internal applications with up to
several million lines of code
Plan, build, and deploy infrastructure to help our engineers detect and
remediate vulnerabilities automatically
Work with external vendors to support 3rd party security reviews
REQUIREMENTS
Expert-level knowledge in Python, Java, or Go
Strong familiarity with OWASP top 10 web vulnerabilities and the ability to
explain them
Expert with ZAP, Burp, or another intercepting proxy
Knowledge of the role of static and dynamic analysis in a robust security
testing suite
PREFERRED
Experience in evaluating the choice and implementation of cryptography
Experience in evaluating the security of mobile applications on iOS and
Android
Experience in evaluating the security of applications
Experience in integrating WAFs as part of a defensible application stack
Experience with fuzzing
Experience with threat modeling, especially STRIDE
请发简历到[email protected]
/* */
我可以直接和HIRING MANAGER推荐。
另外,这个工作地点在santa clara,可以sponsor H1B和申请绿卡
1 (共1页)
进入Security版参与讨论
相关主题
Looking for security researchersRe: 有载国外搞安全的大虾吗?介绍一下哪些学校安全比较?
w32.spybot.wormTriple DES 有什么弱点?
Mozilla Firefox Two Vulnerabilities都是谈论病毒,没有做加密的吗?
请问是不是有个专门网站提供各知名网站的漏洞?请问哪里有关于encryption/decryption的相关学习资料
Open Position - Research Scientist at McAfee Inc. (转载)The Internet’s Not Finished Yet
handbook of applied cryptographyKnow your enemy III
How about "Quantum Cryptography"ftpd vulnerability
Please help!BugTraq是什么东西?
相关话题的讨论汇总
话题: security话题: experience话题: engineer