Cigital, Inc. headquartered in Dulles, Virginia (just outside of Washington, D.C.), is the world’s largest consulting firm specializing in software security and is the global leader in helping organizations design, build, and maintain secure software. Our unique expertise, product technologies, and training services are a culmination of over twenty years of research and thousands of successful software security consulting engagements at leading public and private organizations throughout the world.
We provide a comprehensive range of software security services including consulting, training in both instructor-led and eLearning, mobile application security, and cloud services aimed at addressing the potential security risks associated with third-party or outsourced software. Whether it’s a simple penetration test or deploying an end-to-end software security program, our expert consultants have both the depth of knowledge and breadth of real-world experience to understand the risks and challenges our clients face each day.
Job Description
As Cigital engages with clients in the application of our software security improvement methodologies, the Security Consultant joins in the execution and delivery of planned project deliverables and milestones that assist clients in learning, understanding, and applying Cigital's secure software development methodologies. The Security Consultant typically has task responsibility within one project and develops the capability to perform tasks within one or more of Cigital's security practices. The Security Consultant continuously learns and expands his/her technical competence. Security Consultants do some work from the office, but often go on site to help customers exterminate the bugs and untangle the flaws that make their systems insecure. Our Security Consultants make themselves and their team indispensable advisors to our customers: they build the relationships that help create and identify follow-on assignments.
The ideal candidate will possess expertise in several of the following areas:
- Architecture Security Analysis and Threat Modeling
- Secure Software Design, Architecture, and Engineering
- Software/Application Reverse Engineering
- Red Team Analysis (including network, wireless, physical, and social engineering techniques)
- Database Security
Qualifications
- Familiarity with software security weakness, vulnerability and secure code review a plus
- Familiarity with software attack and exploitation techniques a plus
- Familiarity with at least one software programming language and framework a plus
- Experience with C/C++, .NET, Java, multiple OS and RDBMS
- Experience conducting secure code review a plus
- Experience conducting reverse engineering a plus
- Experience performing web application penetration testing a plus
- Ability to interface with clients, utilizing consulting and negotiating skills
- Ability to undertake and complete tasks independently, meet schedules and delivery timelines, and to move swiftly from concepts and theory to action
- Team-oriented skills
- Ability to collaborate with project team members, take direction from the project lead and execute tasks consistently
- Awareness of end-to-end project management life-cycle including planning, execution and closeout
- Written communication skills for use in preparing formal documentation, Statements of Work, proposals, white papers, and case studies
- Verbal skills that include the ability to clearly articulate thoughts and to deliver presentation and training to all levels of management
- Ability to persuade
- Enthusiasm and commitment along with professional interpersonal skills and an entrepreneurial drive
- Willingness to travel 40-60%
Additional Information
Education and Certifications:
Top graduate in Computer Science, Engineering, Math or related field
Compensation & Work Location:
Cigital is based in Dulles, Virginia, with offices in Amsterdam, Atlanta, Bloomington, Boston, Chicago, Dallas, London, New York, Dallas, San Diego, Santa Clara, Seattle, and works with clients worldwide. We offer a competitive salary, equity compensation, and benefits.
#J-18808-Ljbffr