Can you bend spoons with your mind?

About the Position

You'll be:

• Assessing client environments and advising them on issues of risk, security and compliance
• Penetration testing/ethical hacking (if your skill sets are worthy)
• Researching tools and database security
• Consulting with clients on high-level strategic initiatives as well as highly-technical and detailed regulatory compliance projects
• Learning the tricks of the trade from experienced mentors
• Blogging about your new security finds

Ideally, you'll:

• Have previous auditing/consulting experience
• Have managed networks and systems for both Windows and Unix platforms (even if it's the half-dozen systems stored under your bed)
• Know general information security principles
• Have coding and scripting experience (Ruby and Python are a plus, but are not required)
• Have tried to exploit security holes and then fix them, but only on your own systems
• Be able to communicate technical information to C-level, highly-technical and non-technical audiences alike
• Write good and speak gooder

You'll get a gold star if you:

• Are professionally, or willing to get, certified (while certifications don't indicate competence, they do reflect professionalism and a minimum knowledge level) in any of the following:
  • Security and IT certifications (e.g., CISSP, GIAC, CISA)
  • Technical certifications (e.g., MCSE, CCNA, etc.)
  • Related industry certifications (e.g., QSA, PA-QSA)
• Have payment card (PCI DSS, PA-DSS, P2PE, PFI), financial (GLBA, SOX, SSAE 16) or healthcare (HIPAA/HITECH) experience
• Are fluent in Spanish or other languages and interested in traveling internationally to help us service our growing base of international customers
• Are a member of a professional industry group (e.g., InfraGard, ISACA)

How to Apply

Curious? Drop us a note to iwanttowork@403labs.com with:

• A taste of your personality
• A copy of your résumé
• A reason to ask you to work with us