March 2018 Archives
2018-03-20
Uncle Kerckhoffs wants YOU!
You're a hacker from the bottom of your heart? You don't mind moving to Berlin or Zurich? We'd like to have a chat with you!
We're currently looking for talented hackers to extend our teams in Berlin and Zurich/Winterthur.
IT-Security Analyst - Generalist with focus on certain in-depth areas
You already have experience, working as IT Security Consultant or managing product security in soft- and hardware manufacturing companies. In addition to a broad knowledge in general IT-security related areas, you also have the vision to deepen your knowledge on specific topics.
The most important skills that are required are the following:
- Penetration Testing — you know the tools that assists with all sorts of penetration tests, and you know how to read its resulting output.
- Threat-Modeling and Risk-Assessments — the skill to prepare your tools and targets in a structured manner.
- Creativity — the skill to spot that thing, that turns an objective into something broken.
- Reporting — Explain, write and defend your findings. The skill to push the business-value of your other skills. You must be able to perform proper reporting in English or German language.
- Passion — your personal security deep-dive: a technology or methodology you're focusing on.
In addition to these must-have skills, the following are nice to have:
- Reverse Engineering — the art of illuminating the dark corners of binary code & data, communication protocols and hardware-solutions.
- Source Code Assessments in C, C++, C#, Java, Swift, Objective-C, JavaScript.
- Cryptography — it's definitely a super-bonus, if your eyebrow raises when you hear people saying the product is secure because of cryptography. You know how to spot and exploit potential side-channels, and how to properly use certain cryptographic algorithms.
Junior Hacker
If you don't have the business experience of a consultant, we may want you to extend our team as a Junior Security Consultant. If you bring the necessary skills, we may close the gaps, supporting you with specializing on certain areas in the IT security industry.
What do you need?
- Passion — You bring the vision and we'll help you, turning it into a professional service.
- Creativity — What could possibly go wrong? You have the idea, already.
- Patience — Breaking the unbreakable stuff. Your tenacity is the door-opener to the wonderful world of destruction.
... and of course, quite some technological background.
Your tasks
- Black-/White-/Gray-Box Penetration Tests of networks, services and solutions.
- Review of software and hardware components in source-code and/or binary form.
- Threat Analysis along with the individual business-model of our clients.
- Review of white-papers, architectural- and design-specs and continuous support during the whole Product Development Lifecycle processes.
Our tasks
modzero provides IT security consulting to customers from different civil sections and industries. We reject working on offensive and defensive technologies with military, intelligence, or police investigation. We discuss all governmental inquiries with our colleagues.
This is what we will take care of:
- You work with a great and open-minded team in Switzerland and Germany.
- Your time: If you want to work part-time, talk to us.
- Research — we support your project and your development with research-time.
- Insights into a broad range of interesting, different industries and technologies.
- Regular internal company meetups with workshop-program and good food.
- Salary — we pay for your skills and execute regular, individual interviews on development and expectation of employees.
Application
Please send your application to jobs [at] modzero [dot] ch. Use PGP to sign and encrypt your documents — Find our PGP key right here: https://www.modzero.ch/pgp/jobs_modzero.ch.asc If you'd rather work as a freelancing hired gun, let us know why and don't hesitate to send your resume.