Ashish Khairnar’s Post

Raw example of why hiring top security engineering talent is a non-negotiable for me. We recently required the development of a specific feature using a particular SoC software language with which none of our team members were particularly familiar. In a week and a half it was fully written because a team member could teach themselves that software language over a weekend and then just write it. That is not typical. Our standard is that level of capability. When it's security, it has to work flawlessly.

DVA is not associated with this job opportunity. Principal Red Team Operator https://lnkd.in/gNYJCJRA What you'll get to do... Develop and implement the attack methodology for use in unannounced red team engagements Highlight and offer suggestions to the executive management on strategic strengths and weaknesses of the organization while guiding strategic remediations, mitigations, and kill chains Plan and complete unannounced operations that simulate real-world attacks or emulate threat actors Join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale... #jobopportunity #careeropportunity #hiringnow #jobsearch #joblisting #jobopening #nowhiring #jobvacancy #jobalert #jobposting #jobhunt #jobseeker #jobmarket #jobgrowth #jobprospects #jobpotential #jobgrowth #jobopportunities #jobseeking #jobapplication #jobinterview #joboffer #jobplacement #jobplacementagency #jobrecruitment #jobnetworking #jobadvice #jobtips #jobstrategy #jobsuccess

Job location in Virginia

DVA is not associated with this job opportunity. Senior Application Security Engineer, Multiple Locations https://lnkd.in/gZE4KmAg Responsibilities Support product teams as they develop new features by conducting design reviews, threat modeling, security testing, and code reviews. Assess potential security vulnerabilities within our applications, and work with development teams to ensure remediation in our established SLAs. Identify gaps in MetaMask’s secure software development life cycle (SSDLC), and take initiative leading efforts to address them. Determine the root cause and severity of vulnerabilities reported to us through our bug bounty platform. Participate and contribute to team meetings, roadmap planning, and discussions. Validate that security patches address reported vulnerabilities and test for any potential bypasses Document identified vulnerabilities in a way that allows for our engineering team to take quick action... #employment #jobs #hiring #job #jobsearch #recruitment #career #work #careers #recruiting #nowhiring #resume #jobhunt #business #jobseekers #hr #jobopening #staffing #humanresources #jobseeker #hiringnow #interview #recruiter #jobsearching #vacancy #covid #education #jobinterview #jobopportunity #employmentopportunities

In my experience most of the customer facing security leaders (irrespetivce of their title CISO, Advisory CISO, Field CISO) lose their job within the first year or have terrible job satisfaction, as there is huge expectation mismatch and this article is an attempt to take the grey out. Made some more changes to it based on feedback as well. As a CISO for a SaaS company, one does have to help in pre-sales meeting if the customer is big enough and there are security questions that need to be answered or maybe the CISO on the other side needs reassurance from a peer. The success metrics portion of the document is an attempt to quantify the responsibilities to dispel the notion that a customer facing CISO does not do any work, has no ownership, accountability or responsibilities. Being on the road 24 plus times of the year away from your family, telling a company's story effectively while helping with product apart from other things is no joke.

DVA is not associated with this job post. Sr. Security Researcher, Multiple Locations https://lnkd.in/ggigJnbE What you will do: Perform vulnerability research on a wide variety of targets, e.g. Analyze vendor patches to identify vulnerabilities and develop proof-of-concept exploits Review evidence of malicious activities (e.g. log files, payloads) to confirm exploitation of 0-day and n-day vulnerabilities, identify root causes and reproduce exploits Identify new vulnerabilities in applications or products Develop automated solutions for collecting, processing and analyzing data at scale, e.g. vendor patch processing and analysis exploit identification in large file collections identification of malicious infrastructure... #motivation #recruitment #love #employment #careers

What's REALLY going on with Texas Private Security companies? COMING SOON - we'll explain "insider info" on the current status of the industry, what they really can/can't do for you, and if they are even worth hiring. Industry secrets revealed...

Check out the latest blog Beyviel David and I put together for SIXGEN covering all of the #cybersecurity and #pentesting news, techniques, write-ups, and tools released from 08/12-08/19. SIXGEN is also actively hiring Junior Pentesters, Pentesters, Red Team Operators, and Senior Webapp Pentesters so apply if you're interested! Highlights: - Troy Hunt wrote an article digging into the "3 Billion People" National Public Data Breach - James Kettle of PortSwigger released a primer on novel web timing attacks including methodology, real-world case studies, open-source tools and even a mini CTF. - Outflank's Cedric Van Bockhaven wrote a post about how the MSC file format can be used for initial access or lateral movement - Quentin Roland of Synacktiv wrote a post introducing a tool called SCCMSecrets.py that aims to provide a comprehensive approach regarding SCCM policies exploitation - Oddvar Moe of TrustedSec details using a Universal Data Link Configuration (UDL) file for phishing - And many more tools, techniques, and write-ups! https://lnkd.in/gSi7WXvG

🔥 This Week's HOT Roles – Actively Hiring for Exciting IT Infrastructure Positions 🔥 To all my connections in the IT Infrastructure field💻, We’re actively #hiring for several positions—don’t miss out! Feel free to reach out to me for more details. Here's a recap of our active roles this week: 1) Internal Bilingual Service Desk Specialist - up to 7M 2) In-house Bilingual Network Engineer - up to 12M 3) White Hat Hacker - up to 30M 4) In-house IT Field Lead - up to 8.5M

🚨🚨 #hiring for a #remote Senior Security Incident Response Engineer🚨🚨 https://ift.tt/mixJh5b What are you waiting for? Click the link and apply... If you need a hand in getting prepared, I offer #resume services and #interview prep support. Click the link to book a slot on my Calendly before it fills up! https://ift.tt/THYnOIr If you know someone who would fit the role, let's get THEM #hired. Tag them in the comments and share the post to your connections! *Note: I am not hiring or sourcing for this role. If you are interested in applying, please do so through the link in the post.