Sr. Information Security Engineer - Application and Penetration Testing
Posted: December 23, 2016
Reference ID: 1994836654
Description Information Security Engineer, Application Security and Penetration Testing
LinkedIn is looking for a motivated Information Security Engineer to be an integral part of our house information security team. This team is responsible for protecting our infrastructure, applications, and most importantly, our members. This candidate will be particularly responsible for identifying new vulnerabilities and responding to existing vulnerabilities within the organization.
Responsibilities: Research threats and attack vectors that impact LinkedIn's applications and infrastructure. Assess new and existing applications and system deployments for vulnerabilities and design flaws, and prioritize remediation efforts based on risk. Evaluate new products and technologies, including potential acquisitions. Seek and destroy latent pockets of vulnerability and security weakness wherever they may be. Devise and bolster defenses through secure-by-default frameworks, architectures, and processes. Educate and advocate for security improvement throughout the LinkedIn ecosystem. Build testing tools and platforms to encourage reusable and measurable approaches to assessment. Respond to external vulnerability researcher inquiries and vulnerability reports.
Basic Requirements: • 5 or more years hands-on experience in security solution/implementation. • Experience and technical knowledge in application security and development. • Experience with web application assessment, network penetration testing, and vulnerability research. • Degree in Computer Science. • Experience in security management, auditing methodology, and technology risk assessments. • Experience in documenting and explaining risks and vulnerabilities to technical stakeholders.