Openings for INFOSEC Analyst and Engineers

[Robert Hettinga <rah@shipwright.com>]

--- begin forwarded text


X-Authentication-Warning: silence.secnet.com: majordom set sender to
owner-security-jobs@secnet.com using -f
From: "Meryweather, Rod" <Rod.Meryweather@wang.com>
To: "'security-jobs@secnet.com'" <security-jobs@secnet.com>
Subject: Openings for INFOSEC Analyst and Engineers
Date: Mon, 25 Aug 1997 13:43:14 -0400
X-Priority: 3
MIME-Version: 1.0
Sender: owner-security-jobs@secnet.com
Precedence: bulk

WANG GOVERNMENT SERVICES
SECURITY SERVICES
POSITION OVERVIEW AND SUMMARY

Organization Overview
The Wang GS Security Services organization is a descendant from the
Honeywell Information Systems group that has been focused on developing
High Assurance computing solutions for the US Government since the late
1970's.  Honeywell was the first vendor to have a system evaluated by
the NSA National Computer Security Center (NCSC) against the Orange Book
(a document that defines levels of trust that can be reached by
operating systems) at the A1 level - the highest - in 1984.  Our XTS 300
product is a direct descendent of the A1 SCOMP platform, and is
currently evaluated at the B3 level of trust.

The Security Services (SS) organization focuses on development and
deployment of secure solutions.   Product activities are contained in a
group focused on the XTS 300 operating system and a trusted guard
development framework product (the SAGE).  The rest of the organization
is focused on implementation of task-specific solutions.  These
currently include:

DLA Security Assessment:  Wang currently supports the security planning,
assessment and accreditation activities with the DLA and the Defense
MegaCenter in Dayton, Ohio.

The DMS/DII Guard:  This is a multi-year development effort that will
result in a XTS 300-based X.400/X.500 guard with strong user
authentication and encryption support (FORTEZZA).

The State Department Guard:  This is a new project that will implement a
proprietary (State-compliant) XTS 300-based telegram network guard that
works with identification of unclassified telegrams.

The Command and Control Guard:  The C2G effort involves the evolution of
an existing XTS 300-based Government-owned Guard application that is
deployed world-wide.

The FBI:  Wang currently has developed and deployed multiple IBM
communications guards for the FBI, and continues to evolve and enhance
the functional capabilities of these XTS 300-based systems.

The IRS:  This effort does not involve the XTS 300.  Rather, Wang is
responsible for the EDI telecommunications and security infrastructure
of the IRS Tax Collection system, based on an NCR commercial Unix
platform.

General Technical Requirements
Excellent C and Unix skills (we do not code in C++ except for the IRS
project).  Strong structured design and documentation skills.  Linux OS
on Pentium workstation.  Heavy emphasis on one of the following areas:
Computer Security, Unix Kernel (device drivers, printer drivers, API, OS
construction), Communications (TCP/IP, X.400, X.500, SNMP), Encryption
(PCMCIA or software-based), GUI development (X), Testing.  MUST be
clearable to TS.  MUST have a BS degree or equivalent experience.  MUST
be a self-starter and quick learner.   Competitive compensation and
benefits, casual dress code, technical organization.  Herndon location
as of August 1, 1997.  See
http://www.wangfed.com/products/ssso/homepage.html          for product
details, http://wang.com            for information about Wang.

Specific Positions

INFOSEC Accredidation & Risk Assessment

Candidate will be a member of the DLA Security Architecture team, and
will be responsible for taking a lead role in the security assessment,
certification, accreditation, and post accreditation of  large
multifaceted LAN's/WAN's conducting  EC/EDI communications on a global
bases. Required 4-12 years experience with trusted system solutions and
architectures. Strong back ground in National Computer Security Center
"Rainbow Series" and Information Systems Security (INFOSEC) policies,
procedures and documentation experience.


Accreditation Support/Risk Assessment

Candidate will be a member of the DMS/DII Guard Development and
Deployment team, and will be responsible for taking a lead role in the
assessment and justification of the assurance of the Guard architecture.
Required 6-12 years experience with trusted solutions and architectures,
X.400/X.500, accreditation and deployment issues.  Strong documentation
and communications (verbal) experience.


Senior OS Developer (1)

Candidate will be a member of the XTS 300 OS development staff, and
should have considerable exposure (8-15 years) to the construction and
enhancement of a Unix OS.  Activities include API development and
enhancement, device driver implementation (e.g., printer, SCSI,
"console", PCMCIA devices, ethernet (802.3 + 100Mb or ATM)), application
porting (e.g., X), bug fixes, and new platform porting (from one Pentium
mother board to the next).  Orange Book security a BIG plus.

Junior OS Developer (2)

Candidate will be a member of the XTS 300 OS development staff, and
should be very comfortable with heavy structured C and Unix (OS
construction, release building from source, etc.)  Linux experience a
big plus.  2-5 years experience with heavy C, Unix, and at least one of
the following:  GUI development, application porting on Unix,
communications (TCP/IP, X.4/500, SNMP),  systems installation and debug,
heavy scripts, heavy testing. Orange Book security a BIG plus.

XTS 300 GUI Developer

Candidate will initially be assigned to the State Department Guard task,
and will be responsible for the specification, design, development,
implementation, testing and documentation of the man-machine interfaces
for this Guard (Main-in-the-Middle review capability, dirty word list
management, report generation, etc.).  This will be developed with a
subset of X (Motif-based).  3-5 years experience in X, C, Unix,
documentation, design.

All salaries are dependent on experience and are negotiable.

Open Date : 8/18/97			Close Date: 1/31/98

Point of Contact:

	Rodney Meryweather			Ph:        (703)
827-3818
	Sr. Security Analyst			Fax:      (703) 827-3161
	Wang Government Services		Email:
Rod.Meryweather@wang.com
	540 Huntmar Dr.
	Herndon VA. 22070

Sr. XTS Applications Developer (3)

Candidate will be a member of the XTS 300 Application Development focus
group, and will be responsible for a lead role in the development of
Guard applications.  Must have 8-15 years heavy C, Unix, Comm (TCP/IP,
X.4/500), structured design, documentation, development, implementation,
testing, debug and support.  Orange Book Security and Guard/Firewall
design a big plus.

Jr. XTS Applications Developer (3)

Candidate will be a member of the XTS 300 Application Development focus
group, and will be responsible for a supporting role in the development
of Guard applications.  Must have 2-5 years heavy C, Unix, with a focus
in one or more of the following: Comm (TCP/IP, X.4/500), structured
design, documentation, development, implementation, testing, debug and
support.  Orange Book Security and Guard/Firewall design a big plus.

All salaries are dependent on experience and are negotiable.

Open Date : 8/18/97			Close Date: 1/31/98

Point of Contact:

	Rodney Meryweather			Ph:        (703)
827-3818
	Sr. Security Analyst			Fax:      (703) 827-3161
	Wang Government Services		Email:
Rod.Meryweather@wang.com
	540 Huntmar Dr.
	Herndon VA. 22070

--- end forwarded text



-----------------
Robert Hettinga (rah@shipwright.com), Philodox
e$, 44 Farquhar Street, Boston, MA 02131 USA
"... however it may deserve respect for its usefulness and antiquity,
[predicting the end of the world] has not been found agreeable to
experience." -- Edward Gibbon, 'Decline and Fall of the Roman Empire'
The e$ Home Page: http://www.shipwright.com/