Why join us? In January 2012, Zappos.com, Inc. and its subsidiaries were named #11 on the 2012 Fortune: 100 Best Companies to Work For List.
Why else? We offer an extensive benefits package for all full-time employees, including medical, dental, vision, and 401k!
And. . . we're hiring like crazy right now, and looking for smart, forward-thinking problem solvers to join our world-class, fairly wacky team.
Oh, and one more thing! Cover letters are cool but do you know what's even cooler?! Show us who you are with a cover letter VIDEO! You will be able to upload one when applying for this position. (Video cover letters are not required but if you wanna do one, we wanna see it!)
The Information Security division is looking to hire an Application Security Engineer. The Application Security Engineer will oversee Zappos' web and application security program; will assess our company sites to discover any vulnerabilities; and serve as SME on projects.
Required Skills:
* Database knowledge in MySQL or Oracle strongly preferred
* Knowledge of encryption standards and protocols
* Experience with authentication methodologies and protocols
* Experience with scripting languages (PHP, Python, etc.)
* Experience with web pen testing and vulnerability assessments
* Several years experience with OWASP security concepts and discovering vulnerabilities such as XSS, XSRF, SQL Injection, Cookie Manipulation, etc.
* Development experience in Java, Javascript, PHP, or other languages
* Ability to perform source code reviews
* Knowledge of network and web protocols (http, ipsec, tcp/ip, etc)
Application Security Engineer responsibilities will include but are not limited to the following:
* Serve as SME on website or application-related projects
* Assist with compliance requirements (e.g. PCI)
* Keep up to date on new security vulnerabilities/trends and include in regular assessments
* Investigate and resolve any possible security incidents
* Perform regular vulnerability assessments and pen tests of the web infrastructure
* Develop security improvements for the company's websites and backend applications
* Liaise with other technology teams to work on initiatives and resolving security issues
* Recommend new policies and procedures as needed
Zappos.com, Inc. is an equal opportunity employer and drug free workplace.
This position is located in our Las Vegas office.
Relocation Assistance Available
Click here to apply.
Location: Relo. Assistance Avail.Compensation: Based on Exp.OK to highlight this job opening for persons with disabilitiesPrincipals only. Recruiters, please don't contact this job poster.Please, no phone calls about this job!Please do not contact job poster about other services, products or commercial interests.
No comments:
Post a Comment