From Jeffrey.Myers at sf.frb.org Mon Mar 4 08:36:24 2013 From: Jeffrey.Myers at sf.frb.org (Myers, Jeffrey) Date: Mon, 4 Mar 2013 16:36:24 +0000 Subject: [Baylisa-jobs] FW: Jeff Myers In-Reply-To: <9393E99D1927014A87573F666F2116950B0EB701@NR3PWPGLCD2P.rb.win.frb.org> References: <9393E99D1927014A87573F666F2116950B0EB701@NR3PWPGLCD2P.rb.win.frb.org> Message-ID: I am now a sourcer with the Federal Reserve Bank in San Francisco and I work like to talk with you about openings within our organization. As you can imagine, the work of the Federal Reserve Bank is imperative for the proper operation of our nation's financial infrastructure. We are in need of individuals to join our team to keep our nations fiscal services sound. My immediate need is for an InfoSec experienced individual. This is a great opportunity for a person to experience an international scale operation and to have great impact on the economic landscape of our country. Please call me and it would be my pleasure to discuss the opening in greater detail. Jeff 415-974-3342 Penetration Tester Overview: The National Incident Response Team (NIRT), a National Information Technology Operation (NITO) for the Federal Reserve System, delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the Federal Reserve System. As a member of NIRT's Information Security Assessment Team, you will perform hands-on, technical penetration/ethical hacking tests of all facets of the Federal Reserve System's IT environment. You will interact directly with NIRT's customers located across the United States. Job Responsibilities: * Oversee and conduct vulnerability assessments and penetration testing/ethical hacking * Oversee and perform the review and analysis of security vulnerability data to identify applicability and false positives * Prepare and distribute security assessment reports to customers * Research and develop testing tools, techniques, and process improvements * Perform additional incidental duties as assigned Job Requirements: * Bachelor degree in Information Technology/Computer Science, or related disciplines and/or equivalent work experience * Excellent analytical skills * Excellent interpersonal, communication, organizational, and project management skills * Team player with excellent consultative and communication skills, and the proven ability to work effectively with client, internal management and staff, vendors and consultants * Strong written and verbal communications skills * Proven ability to communicate technical issues to technical and non-technical business area representatives * Hands-on experience with commercial and open-source network and application security testing tools * Experience testing web applications for common security vulnerabilities as defined by OWASP. These include input validation vulnerabilities, broken access controls, session management vulnerabilities, cross-site scripting issues, SQL injection and web server configuration issues * Ability to travel * Approximately 3-5 years of experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols * Ability to obtain US Security Clearance * CISSP certified or the ability to work towards obtaining the certification Desired * Script-writing skills (Python, Perl) * Familiarity with application development (C, C++, .NET, JAVA) * Experience developing exploits * Experience with application security source code and design review Based in either Dallas or San Francisco Option to telecommute 2-3 days a week US citizen [cid:6__=07BBF06FDFF70B4F8f9e8a93df93 at glc.frb.org] Jeff Myers Tel.: 415.974.3342 Human Resources Federal Reserve Bank of San Francisco 101 Market Street | Mail Stop 500 San Francisco, California 94105 Fax.: 415.977.4138 www.frbsf.org/careers -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.gif Type: image/gif Size: 4511 bytes Desc: image001.gif URL: From Jeffrey.Myers at sf.frb.org Mon Mar 11 10:44:05 2013 From: Jeffrey.Myers at sf.frb.org (Myers, Jeffrey) Date: Mon, 11 Mar 2013 17:44:05 +0000 Subject: [Baylisa-jobs] Information Security Analyst (Incident Response) Message-ID: I am a sourcer with the Federal Reserve Bank in San Francisco and I work like to talk with you about openings within our organization. As you can imagine, the work of the Federal Reserve Bank is imperative for the proper operation of our nation's financial infrastructure. We are in need of InfoSec individuals to join our team to keep our nations fiscal services sound. My immediate need if for a Security Analyst to join our incident response team. This is a great opportunity for a person to experience an international scale operation and to have great impact on the economic landscape of our country. Please call me and it would be my pleasure to discuss the opening in greater detail. Jeff 415-974-3342 Information Security Analyst (Incident Response) Area Overview: The National Incident Response Team (NIRT), a national service provider for the Federal Reserve System, delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the Federal Reserve System. The mission of the National Incident Response Team is to play a leading role in the Federal Reserve System's efforts to protect is information systems against unauthorized use. Job Description: As a member of the NIRT, this individual will provide incident response services to the FRS and Treasury. These services include managing complex tracking and data analysis tasks in order to identify computer attacks and probes as they occur, and being responsible for all technical aspects of national Computer Emergency Response Team (CERT) operations including intrusion detection, new incident tracking, documentation, analytical investigation, problem closure and future security threat countermeasures. The individual will also complete projects and tasks on an as needed basis, and interact directly with FRS technical and business customers located across the United States. Required Skills: The candidate should possess in-depth knowledge and understanding of a breadth of information technologies and information security topics. Specifically, this should include the ability to: * Analyze and review cases until closure; this includes investigating and recommending appropriate corrective actions for cyber security incidents; and communicating with the implementation staff responsible or taking corrective actions. * Research and develop testing tools, techniques, and process improvements in support of security event detection and incident response. * Fuse cyber intelligence collected from diverse sources to drive strategic and operational responses to developments in the threat landscape. * Demonstrate a strong knowledge of, and ability to communicate about, the information security threat landscape. * Carry out post mortem analysis on logs, traffic flows, and other activities to identify malicious activity. * Be able to provide technical analysis in support of forensic investigations. * Drive the development, testing and implementation of security plans, products, control techniques, security policy and procedures for national network security oversight and intrusion response tracking. * Assess vulnerabilities, then communicates to System-wide information security staff to ensure prompt and effective distribution of alerts and that incidents are addressed in the most effective and efficient manner possible. * Execute tasks and lead projects as needed. * Participate in or lead customer and partner facing meetings and projects, including those that involve technical topics or technical service delivery. * Demonstrate excellent communication skills, analytical ability, strong judgment, and the ability to work effectively with clients and IT management and staffs. * Communicate technical issues to technical and non-technical business representatives. * Understand strategic objectives and vision, and work towards those goals. * Ability to work in a 24x7x365 environment when critical and high severity incidents require attention. Preferred Skills: * Experience writing Perl, Python, scripting, programming, or other languages is a plus. * Large-scale data mining and anomaly detection. * Strong understanding of malware and exploit lifecycle. * Comprehensively understand networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network protocols. * Experience administering and troubleshooting operating systems, including Solaris, Linux, and Microsoft Windows Server is a plus. * Database, SQL knowledge is a plus. * Thoroughly understand TCP/IP protocol. * Ability to perform or learn system-level or static reverse engineering. * Ability to perform or learn detailed computer forensics Education/Certifications: Bachelors degree in field or related discipline. Certifications complementing education are a plus. Advanced degree a plus. The ability to obtain and maintain National Security Clearance is also required. The Federal Reserve Bank of San Francisco is an Equal Opportunity Employer. Our people proudly reflect the diversity and ideas of the communities we serve. [cid:6__=07BBF06FDFF70B4F8f9e8a93df93 at glc.frb.org] Jeff Myers Tel.: 415.974.3342 Human Resources Federal Reserve Bank of San Francisco 101 Market Street | Mail Stop 500 San Francisco, California 94105 Fax.: 415.977.4138 www.frbsf.org/careers -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.gif Type: image/gif Size: 4511 bytes Desc: image001.gif URL: From skumar at maxpopuli.com Thu Mar 14 04:58:54 2013 From: skumar at maxpopuli.com (Shree Kumar) Date: Thu, 14 Mar 2013 07:58:54 -0400 Subject: [Baylisa-jobs] Principal DevOps Engineer Message-ID: Principal DevOps Engineer - Full-time, Mountain View, CA. SKILL KEYWORDS - C/C++ UNIX at the user level (using vi, emacs, etc) with a good grasp of Unix CLI and basic unix tools like sed, awk; knowledge of DBs - we use Greenplum MPP (massively parallel processing) - postgres preferred with knowledge of Greenplum, is IDEAL Provide support to the Applications Platform team that is developing the cloud and data infrastructure for the world's largest file reputation system that tracks billions of files and hundreds of millions of users, similar to google's page rank. The platform is used by teams to analyze terabytes of data from consumer and enterprise products and build features using the findings. The infrastructure is still in its nascent stage and under active development. So, it is a perfect opportunity for an engineer who wants to gain experience in the bleeding edge data base issues of today and influence it's architecture. The team is working in a startup mode with all the advantages of a large corporation. Solve big data problems (not millions but billions of rows and 100's of TB of data). Need good scripting background and a reasonable working knowledge of database. The ideal candidate will dream about distributed systems for the parallel processing of massive quantities of data, be familiar with Postgresql and Hadoop/MapReduce, and frequently think to themselves, "Yeah, that works for 500 MB of data; what about 200 TB?" Responsibilities include Analyzing and fixing performance bottlenecks in MPP databases, Developing components to improve the overall efficient and reliability of MPP databases, Optimizing the performance and scalability of big data clusters, Guiding users on how to write queries and fine tune queries as needed, Schedule data loading and application task running on shared clusters, Diagnose underlying reasons for DB, loading, and application issues (e.g., what is the core issue for a set of alerts), Develop platform-team-oriented reports on cluster state and trends, Work with users to project storage/computation requirements for clusters Qualifications: Bachelor's degree in computer science. Masters preferred. Database internal background including SQL, query planning and execution for parallel databases, Working knowledge of writing UNIX user space applications, Good knowledge in scripting language including Python and Perl., Knowledge of C/C++ a plus , Experience in large scale data analytics or graph mining systems is a plus. Full-time - salary - DOE - $130k - 160k + benefits/incentives Best regards, Shree Kumar. skumar at maxpopuli.com The Magic is in the Mix!T Max Value Populi!T Contact information: ________________________________________________________ Shree Kumar Director - Talent Acquisition Max Populi, LLC 4628 Bayard Street, #207 Pittsburgh, PA 15213-2750 Tel: (412) 567-5279 Fax: (412) 567-5198 e-mail: skumar at maxpopuli.com Website URL: http://www.maxpopuli.com Skype: max.populi LinkedIn: http://www.linkedin.com/pub/shree-kumar-lion/25/a1a/a20 ________________________________________________________ Note: ________________________________________________________ The information contained herein and/or attachments hereto are specifically intended for the person or entity to which it is addressed. This e-mail may contain confidential, privileged, and/or proprietary material. Any review, retransmission, dissemination or other use of, or undertaking any endeavor in reliance on, this information by persons or entities other than the intended recipient is strictly prohibited. If you received this in error, please contact the sender and delete the material from any computer. Thank you for your assistance. ________________________________________________________ -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/jpeg Size: 3781 bytes Desc: not available URL: From chrisvan at a9.com Thu Mar 14 12:23:16 2013 From: chrisvan at a9.com (Van Groningen, Chris) Date: Thu, 14 Mar 2013 19:23:16 +0000 Subject: [Baylisa-jobs] Sr. Operations Engineer Message-ID: Full time Position at A9.com in Palo Alto, CA Please respond to chrisvan at a9.com A9 is a subsidiary of Amazon. Does the challenge of building and running large-scale distributed imaging server infrastructure excite you? Do you enjoy working in a fast-paced, entrepreneurial environment, developing high-quality, scalable solutions and deploying them globally? Join the Visual Search team at A9.com (a subsidiary of Amazon.com) and help us build our technical operations from ground up. Our solutions match millions of images - whether on the Amazon website, or the Amazon Wish List, or on our flagship "Flow" application (available for iPhone and Android) using our cutting edge patented technologies. All in a few milliseconds, at Amazon scale. Every day, we run an infrastructure that combines various platforms and technologies at scale, and delivers revenue to Amazon. With our systems and services growing rapidly, we are looking for the best and brightest talent to solve complex scaling challenges using cutting edge technologies in heavily automated environments. In this role you will: * Own operational responsibility for high-availability distributed systems deployed across continents, and the systems that generate this data. * Help define and implement processes to improve the operational efficiency for the entire Visual Search organization. * Improve the build and release management for all online services. * Develop tools, scripts and documentation for everyday maintenance tasks. * Assist in the development and maintenance of security best practices. * Own hardware fleet management. * Liaison with other Amazon teams on troubleshooting. * Work with developers on improving operational coding practices and validating of software changes. * Provide on-call support in a shared rotation for production services. Requirements: * Experience in the development and rollout of technical operations processes. * Experience in managing applications, trouble-shooting failures and recovery. * Experience with process management tools (Remedy, JIRA, etc.) as well as operations policies and practices. * 5+ years of systems administration experience in a large scale production Linux or other UNIX environment, preferably as a senior member of the team. * 2+ years of scripting and development skills in bash, Perl, Python, Java, etc. * Working knowledge of Hadoop. * Familiarity with the AWS stack. * Working knowledge and familiarity with high-availability, distributed systems and services in a hosting environment: including hardware, OS, storage, network, and database solutions. * Experience with capacity planning and performance measurement tools and reporting. * Bachelor's degree in Computer Science or a related field. You are going to love this job because you will: * Work alongside top-notch engineers, product managers and business owners in a fast-paced productive environment. * Have a direct impact on the bottom line of one of the best Internet companies on the planet. * Contribute to a strategic Amazon initiative that reaches large audiences. -------------- next part -------------- An HTML attachment was scrubbed... URL: From irish.masms at gmail.com Mon Mar 25 10:53:57 2013 From: irish.masms at gmail.com (irishMASMS) Date: Mon, 25 Mar 2013 10:53:57 -0700 Subject: [Baylisa-jobs] Information Security Analyst (DR/BCP) 6 MO temp to hire - Hayward, CA Message-ID: <51508F35.4090909@gmail.com> Current $employer is looking for an experienced DR/BCP person. 6 months temp to hire role in Hayward, CA (East Bay). Any interest or questions, be sure to hit me up off list. Information Security Analyst Position Purpose: This position will plan and architect datacenter and network recovery strategies and solutions, and plan and coordinate disaster recovery (DR) and business continuity planning (BCP) plans and testing. The responsibilities are to evaluate, coordinate, and monitor plans and activities relating to periodic disaster scenario testing in the IT and business environments. This position will maintain and support relationships with internal and external auditors, coordinate collection of test results and provide those to auditors as required. This position will also track audit issues pertaining to DR and BCP and coordinate, plan, and project manage activities and projects related to compliance with financial regulations. Essential Duties: Develop and revise DR related documentation to keep it up to date as business and technology changes occur, including DR plan, runbook, business resumption plan, and testing program. Monitor and report to IT leadership, internal auditors, and external auditors on DR and BCP readiness and test results. Maintain and support relationships with internal and external auditors, coordinate data collection during audits, coordinate the activities of auditors and IT staff related to audits including collection, upload, and explanation of documents Coordinate, track, and project manage activities and projects related to DR and BCP. Coordinate DR testing. Organize and publish documents relating to DR and BCP such as test results. Qualifications & Experience: Experience with disaster recovery (DR) and business continuity planning (BCP) including test coordination Knowledge of IT and DR terminologies. Familiarity with manual and automatic test scripting procedures Required Knowledge, Skills & Abilities: Experience with DR and BCP planning and testing Excellent communication skills as well as documentation and publishing ability Ability to compile and deliver persuasive reports at all levels within the organization Ability to create cogent, visually compelling reports for senior management and strong, concise communication skills with a brisk writing style; able to build a compelling and effective narrative Ability to work with little supervision and consistently deliver results Preferred Knowledge, Skills & Abilities: Minimum of 5 years of security, compliance, and/or audit experience Understanding of VM Tools, VCenter, VMWare server virtualization technology, V-Motion migration tools.Familiarity with NetApp integration, UCS implementation, mainframe disaster recovery. Understanding of SRM implementation, policy configurations, recovery plans. CISSP, CISM, CISA, Security+ or other recognized information security, project management, or audit certifications or accreditations Previous experience in the financial industry Experience in regulatory environments and knowledge of regulations such as FFIEC and GLBA.