FireEye Internships – Penetration Tester

Website FireEye

Job Description:

A successful Red Team consultant at FireEye should possess a deep understanding of both information security and computer science. They should understand basic concepts such as networking, applications, and operating system functionality and be able to learn advanced concepts such as application manipulation, exploit development, and stealthy operations. This is not a “press the ‘pwn’ button” type of job; this career is technical and challenging with opportunities to work in some of the most exciting areas of security consulting on extremely technical and challenging work. A typical job could be breaking into a segmented secure zone at a Fortune 500 bank, reverse engineering an application and encryption method in order to gain access to sensitive data, all without being detected. If you can exploit at scale while remaining stealthy, identify and exploit misconfigurations in network infrastructure, parse various types of output data, present relevant data in a digestible manner, think well outside the box, or are astute enough to quickly learn these skills, then you’re the type of consultant we’re looking for.

Job Responsibilities:

  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments
  • Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
  • Develop scripts, tools, or methodologies to enhance FireEye Mandiant’s red teaming processes
  • Recognize and safely utilize attacker tools, tactics, and procedures
  • Assist with scoping prospective engagements, leading engagements from kickoff through remediation, and mentoring less experienced staff

Job Requirements:

  • Mastery of Unix/Linux/Mac/Windows operating systems, including bash and Powershell
  • 3 plus years’ experience in at least three of the following:
  • Mobile and/or web application assessments
  • Source code review for control flow and security flaws
  • Network penetration testing and manipulation of network infrastructure
  • Strong knowledge of tools used for wireless, web application, and network security testing
  • Thorough understanding of network protocols, data on the wire, and covert channels
  • Reverse engineering malware, data obfuscators, or ciphers
  • Must be eligible to work in the US without sponsorship
  • Developing, extending, or modifying exploits, shellcode or exploit tools
  • Email, phone, or physical social-engineering assessments
  • Shell scripting or automation of simple tasks using Perl, Python, or Ruby
  • Developing applications in C#, ASP, .NET, ObjectiveC, Go, or Java (J2EE)

Job Details:

Company: FireEye

Vacancy Type: Full Time

Job Location: Princeton, NJ, US

Application Deadline: N/A

Apply Here

instantcareers.net