IT Security Programmer/Analyst

HP is a leading global provider of products, technologies, solutions and services to consumers and business. The company's offerings span IT infrastructure, personal computing and access devices, global services, and imaging and printing. Our $4 billion annual R&D investment fuels the invention of products, solutions and new technologies so we can better serve customers and enter new markets. We invent, engineer and deliver technology solutions that drive business value, create social value and improve the lives of our customers.

This position involves working in the exciting area of IT Security with a focus on vulnerability assessment and countermeasures. As a vulnerability assessment / countermeasures team member you will be responsible for working in conjunction with the team lead in the discovery, identification, and mitigation of certain vulnerable systems (primarily Microsoft, HP-UX, and Linux). This will primarily be done through the creation and delivery of payloads designed to mitigate threats posed by vulnerable systems. Additional expectations including working with subject matter experts from inside and outside the company on security related research, as well as participation in the full lifecycle development of security applications and tools.



The successful candidate will have experience working with shellcode, buffer overflows (heap/stack), debuggers, and possess strong x86 assembly skills. An understanding of, and experience with exploit code and methodologies is also required. Additionally, the candidate must be able to demonstrate expert programming skills, a deep understanding of advanced TCP/IP knowledge, as well as an understanding of Microsoft Windows internal functions and APIs. Experience with large-scale web application development and database design and administration is strongly preferred.



A successful candidate must also posses the following attributes: uncompromising personal and professional integrity and ethics; have a proven track record of success; the ability to work in and succeed in a remote/virtual environment; be capable of sound decision-making and judgment, especially under pressure; the ability to stay on track and maintain focus despite interruptions; Achievement/accomplishment oriented; able to deliver consistently; Self-motivated and able to work with minimal supervision; Strong organization, prioritization, and rationalization skills; Excellent written, verbal, communication skills; Ability to interface with individuals, management, customers, and partners; Committed to continuous improvement and excellence Professional certification (such as CISSP, SANS/GIAC, CERT)
REQUIREMENTS


Resumes or cover letters should CLEARLY address requirements

1) Bachelors Degree or better in Computer Science and 10+ years of professional experience in the information security field or combination of education and experience.

2) Applicant MUST have, and be able to effectively demonstrate, a deep and current understanding of information security principles AND be experienced in all aspects pertaining to vulnerability lifecycles.

3) Applicant must have, and be able to demonstrate, experience and skill in Microsoft, Linux and HP-UX system and software architecture, data collection/storage methods and database administration, programming languages, web-based application development, and website development /administration. (MUST have strong skills with Apache, C/C++, Debuggers, Java, JavaScript, Oracle 10gR2, Perl, shellcode, SQL, x86 assembly, XML)