BS or MS (preferred) in Computer Science with at least 8-10 years of experience in the areas of security engineering.
At least 5 years of experience with handling security issues with highly scalable web deployments preferably in e-commerce/financial domains.
Hand on experience in application-level vulnerability testing and auditing, Intrusion detection and prevention.
Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security
Development experience in C, C++ and/or Java
Scripting skills (e.g., PERL, shell scripting)
Experience with service-oriented architecture and web services security desired
Experience with the application of threat modeling or other risk identification techniques
Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
Implementation of security solutions at the business unit level
Key Skills: network security, authentication, security protocols, cryptography and application security