AT&T Consultant - Professional Services 3
Don't miss this opportunity to join the company recognized by
Fortune magazine as the World's Most Admired Telecommunications Company and ranked #2 on DiversityInc's list of 2009 Top 50 Companies for Diversity.
As the largest communications company in the world, more than 120 million customers count on us every day to deliver the wireless, Internet, data and advertising services that fuel their businesses and connect them to their world. You will find yourself connecting communications and technology with opportunities that will take you to places you never imagined.
POSITION DESCRIPTION
AT&T Consulting Solutions is a wholly owned subsidiary of AT&T (a Fortune Global Top 10 company). AT&T is looking for a technical information security practitioner with solid penetration testing experience for the position of a Senior Consultant located in eastern New England to be a part of a dynamic team of experienced security professionals with varied experiences. AT&T Consulting clients range from some of the largest networks in the world to small businesses requiring security consulting expertise.
Job Duties:
This position will be focused on providing guidance around application security considerations to our portfolio of Fortune 500 clients, conducting security assessments of applications hosted and deployed on a wide range of platforms and languages, and work with the practice leadership to keep abreast of developments in the application security space from both a technical and a policy/process/procedure/compliance perspective. Key job responsibilities will include:
• Perform application security reviews, penetration tests, and code-level reviews
• Consult with application owners on application vulnerabilities and security best practices
• Follow standard methodologies and develop new and innovative processes.
• Focus on results and work within tight timelines.
• Demonstrated ability to learn and apply critical thinking to a variety of situations.
Required Qualifications
• 3-5 years of experience conducting web application security reviews
• Expertise in web application vulnerabilities and security best practices
• Knowledge of network and application design, support and development
• Experience with the following Web Assessment tools: BURP Suite PRO, APP Scan, and other tools as needed.
• BS in CS, Engineering, Information Systems or equivalent.
• Experience performing penetration testing at the network layer
• Experience performing secure code reviews on common languages and experience with tools such as Fortify 360 or AppScan Source Edition
• Understanding of web application protocols (HTML, HTTP, XML, etc.)
• In depth understanding of SDLC models and approaches
• Experience coding with C/C , Java, .NET or other programming and scripting languages
• Excellent communication (written and oral) and interpersonal skills
• Strong organizational, multi-tasking, and time-management skills
• Ability to travel
Additional Qualifications
• Active security clearance a big plus
• Application development experience a plus
• Mobile application security experience a plus
• Consulting experience is a plus
• CISSP or other security certifications
• Governance, regulatory or controls experience
• Understanding of software development methodologies such as waterfall, Rational Unified • Process and Agile software development
• Understanding of information security and available security tools and technologies
The largest communications company in the United States. And the world. We are the industry leaders in providing wireless service, high speed internet access, local and long distance voice, and directory publishing and advertising services across the US. We are also developing our business to include next-generation television services with our new AT&T U-VerseSM TV.
Join our incredibly diverse company of more than 250,000 people and help drive the innovation that keeps AT&T at the leading edge of technology and service. Expect big things from the company that created the communications industry.
