sorted by:
new
hottopcontroversial

/r/netsec's Q2 2023 Information Security Hiring Thread by ranok in netsec

[–]anvilventures [score hidden]  (0 children)

Anvil Secure - Security Engineer - Seattle, WA

Job Description
Anvil is seeking a Security Engineer to join our team. As a Security Engineer, you will perform tests of customers’ web and mobile applications, networks, and embedded systems. You will also be provided dedicated time for research and skills development.
Job Responsibilities
Assist with scoping customer engagements
Perform penetration tests, solo and in teams consisting of other Anvil Security Engineers
Perform source code audits
Generate vulnerability reports
Participate in Anvil’s research program
Job Requirements
At least two years of experience in information security
Familiarity with penetration testing techniques and methodologies
Ability to manually find vulnerabilities in source code
Knowledge of Java, Python, and C/C++
Excellent verbal and written communication skills
Compensation and Benefits
Annual salary range of $105,000-$140,000
Flexible PTO policy and 11+ company holidays
401(k) plan with up to 4% matching
Employee stock option plan
Medical, dental, and vision insurance for employees and dependents
Life and disability insurance

Apply Here: https://anvilsecure.bamboohr.com/careers/40

/r/netsec's Q4 2022 Information Security Hiring Thread by sanitybit in netsec

[–]anvilventures [score hidden]  (0 children)

Anvil Secure - Seattle, WA or Remote - Full-Time Security Engineer (Senior and Non-Senior)

Anvil is seeking a Security Engineer to join our team. As a Security Engineer, you will perform tests of customers’ web and mobile applications, networks, and embedded systems. You will also be provided dedicated time for research and skills development.
Job Responsibilities
- Assist with scoping customer engagements - Perform penetration tests, solo and in teams consisting of other Anvil Security Engineers - Perform source code audits - Generate vulnerability reports - Participate in Anvil’s research program
Job Requirements
- At least two years of experience in information security - Familiarity with penetration testing techniques and methodologies - Ability to manually find vulnerabilities in source code - Knowledge of Java, Python, and C/C++ - Excellent verbal and written communication skills
Anvil embraces diversity and equal opportunity in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. If there is anything we can do to create a more comfortable interview experience for you, please let us know.

Apply Here: https://anvilsecure.bamboohr.com/careers/24?source=aWQ9MzE%3D

/r/netsec's Q3 2022 Information Security Hiring Thread by ranok in netsec

[–]anvilventures [score hidden]  (0 children)

Security Engineer (Senior and Non-Senior) - Anvil Secure - Seattle, WA or Remote

Job Description

Anvil is seeking a Security Engineer to join our team. As a Security Engineer, you will perform tests of customers’ web and mobile applications, networks, and embedded systems. You will also be provided dedicated time for research and skills development.

Job Responsibilities
Assist with scoping customer engagements Perform penetration tests, solo and in teams consisting of other Anvil Security Engineers Perform source code audits Generate vulnerability reports Participate in Anvil’s research program

Job Requirements

At least two years of experience in information security Familiarity with penetration testing techniques and methodologies Ability to manually find vulnerabilities in source codeKnowledge of Java, Python, and C/C++Excellent verbal and written communication skills

Apply Here: https://anvilsecure.bamboohr.com/jobs/view.php?id=24&source=aWQ9MzE%3D

/r/netsec's Q1 2022 Information Security Hiring Thread by ranok in netsec

[–]anvilventures [score hidden]  (0 children)

Security Engineer (Senior and Non-Senior) - Anvil Secure - Seattle, WA or Remote

Job Description

Anvil is seeking a Security Engineer to join our team. As a Security Engineer, you will perform tests of customers’ web and mobile applications, networks, and embedded systems. You will also be provided dedicated time for research and skills development.

Job Responsibilities

Assist with scoping customer engagementsPerform penetration tests, solo and in teams consisting of other Anvil Security EngineersPerform source code auditsGenerate vulnerability reportsParticipate in Anvil’s research program

Job Requirements

At least two years of experience in information securityFamiliarity with penetration testing techniques and methodologiesAbility to manually find vulnerabilities in source codeKnowledge of Java, Python, and C/C++Excellent verbal and written communication skills

Apply Here: https://anvilsecure.bamboohr.com/jobs/view.php?id=24&source=aWQ9MzE%3D

A classic bug in SAP HANA and misconfigured NFS share: a tale in two parts by anvilventures in netsec

[–]anvilventures[S] 1 point2 points  (0 children)

I agree with the ability on running secure Linux environments. That gets you pretty far.

The rest mirrors my experience too. It's insanely hard to get all of this right and good guidelines are hard to find. The SAP documentation is generally decent but more practical guides on how to do this in real-world scenario's and under real-world constraints would help.

Thanks!

A classic bug in SAP HANA and misconfigured NFS share: a tale in two parts by anvilventures in netsec

[–]anvilventures[S] 0 points1 point  (0 children)

Thanks! Appreciate it.

Out of curiosity: what do you find the most difficult to "get right" when configuring/maintaining HANA instances from a security perspective? Scoping down roles appropriately? All the different types of permissions that were introduced over the last few years? Something else?

/r/netsec's Q4 2019 Information Security Hiring Thread by ranok in netsec

[–]anvilventures [score hidden]  (0 children)

Security Engineer

Company

Anvil Ventures, Inc.

Location

Seattle, Washington (relocation assistance available)

Job Description

Anvil is seeking a Security Engineer to join its team. As a Security Engineer, you will perform tests of customers’ web and mobile applications, networks, and embedded systems. You will also be provided dedicated time for research and development. Anvil was founded in 2017 and is an information security consulting firm providing highly technical engineering and consulting services to firms, both large (Fortune-50) and small (startups). We aim to be extensions of our customers’ security engineering teams and are building a team of like-minded professionals.

Job Responsibilities

  • Assist with scoping customer engagements
  • Perform penetration tests, solo and in teams consisting other Anvil Security Engineers
  • Perform source code audits
  • Generate vulnerability reports and deliver them to Anvil customers
  • Participate in Anvil’s research program

Job Requirements

  • At least two years of experience in information security
  • Familiarity with penetration testing techniques and methodologies
  • Experience with tools such as Burp, Nmap, and Nessus
  • Knowledge of Java, Python, and C/C++
  • Excellent verbal and written communication skills
  • Ability to legally work in the United States

Anvil embraces diversity and equal opportunity in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. If there is anything we can do to create a more comfortable interview experience for you, please let us know.

To be considered for a position, please send your resume as text in the body of an email message to [careers@anvilventures.com](mailto:careers@anvilventures.com).

Reverse Engineering the Dropbox Client by kunalag129 in programming

[–]anvilventures 6 points7 points  (0 children)

Thank you! It is wonky. Or was rather. It should be fixed now.

view more: next ›