Security Consultant

DataArt has been engaged in software development and IT consulting since 1997. 

Companies that create interesting products and services have complex business processes, they want to beat the competition with the help of technology, and usually they turn to us. We, in turn, help them come up with technologies, build, implement, maintain, and upgrade them.

It is also should be noted that we hire people not for a project but for a team. Projects change, but the DataArt network of companies with its infrastructure, support, and tools of professional development stays.

DataArt has a flat structure, which means we don't have superiors and subordinates. The engineers directly communicate with the customers' representatives and are free to choose the tools for the job (as long as not constrained by other factors). We have free internal language and technological courses, hold international conferences, participate in other party conferences, provide employees with insurance, and take care of them in all kinds of ways.

DataArt's network consists of 20 sales and development centers (US, UK, Argentina, Germany, Bulgaria, Poland, Russia, Ukraine, and Latvia). Our specialists can work in any of the centers after discussing it with the project team (and if they desire to, of course).

Required Skills and Experience

• 3+ years of experience working in IT 
• At least a year of work experience in the field of information security (penetration tester, security analyst, etc.)
• Excellent understanding of existing types of vulnerabilities and security threats
• Basic knowledge of any existing methodology for penetration testing (OWASP, WASC, OSSTMM, etc.)
• Experience working with specialized tools for manual and automated penetration testing (BurpSuite, Sqlmap, Nmap, Metasploit, Nessus/OpenVAS, Wireshark, KaliLinux etc.)
• Experience developing custom auxiliary programs with any programming language 
• Basic knowledge of various technologies and architectures (Linux, Windows, Cisco, ActiveDirectory, Java, .NET, etc.) 
• Basic knowledge of databases and skills working with DBMS (one of the following: MSSQL, Oracle, MySQL, PostgreSQL, etc.)
• Experience communicating personally with a client
• Stress resistant, self-organized person
• High level of motivation to work and develop professionally in the field of software security
• Good spoken English

Additional Competencies

• Knowledge of cryptography
• Experience in reverse engineering and source code analysis
• Basic knowledge of security standards (PCIDSS, ISO27000, OWASPTOP10, etc.)
• Experience independently conducting a full cycle of product safety analysis (communicating with the client, clarifying details, performing security analysis, creating and submitting a final report, and consulting)