Tibet Corps invites Tibetan professionals and students residing in North America to contribute their expertise at Central Tibetan Administration in Dharamsala, India. A monthly stipend and housing will be provided by TibetCorps. The Office of Tibet will try to help acquire funds to cover the entire or portion of the round-trip airfare to India. A minimum of two months service is required.
Mission: Tibet Corps seek to inspire Tibetans to become directly engaged in tangible work to build and strengthen the Tibetan community, its institutions, and the Central Tibetan Administration, to surmount barriers and gaps in space and resources, building on their own collective strength to support Tibet and Tibetans.
Interested applicants can send their resumes and cover letter to ps2dcrep (at) tibet.net (PDF only).
There are two opportunities available at the moment:
- Web Application Security/Pentesting (Click)
- Cyber/Network Security (Click)
Position: Web Application Security/Pentesting at TCRC
Duties and Responsibilities:
- Perform application penetration testing, vulnerability assessment and source code review
- Profile an application, identifying threats, and developing test cases to target identified threats
- Identify and exploit vulnerabilities in applications and networks
- Prepare reports, documenting identified issues based on internal templates
- Research emerging security topics and new attack vectors
- Write tools and scripts to automate technical processes and make audits more efficient
Technical and Education Qualification:
- Bachelor of Computer Science/IT/Computer Engineer/Software Engineer or equivalent degree.
Required Skill and Experiences:
Skill:
- In-depth understanding of security issues, exploitation techniques and remediation measures
- Ability to follow an in-depth manual testing process and not just run automated tools and copy paste results
- Development knowledge of any current programming languages
- Strong understanding of software and application security
- Intercepting proxies (i.e. Burp Proxy, Charles Proxy, Web scarabProxy, Paros Proxy, etc.)
Experience:
- At least six months or performed application penetration testing, vulnerability assessments and source code reviews.
- Experienced in preparing reports and documenting issues identified.
- Experienced in writing scripts to automate the technical processes.
Above position can also be done from remote, but preferably onsite.
Position: Cyber/Network Security
Duties and Responsibilities:
- Identify and assess LAN infrastructure regarding risks and vulnerabilities.
- Penetration test of the IT infrastructure/OS
Technical and Education Qualification:
- Bachelor of Computer Science/IT/Computer Engineer/Software Engineer or equivalent degree.
Required Skill and Experiences:
Skill:
- Must have knowledge of Network / System / OS security – secure configuration, patch management etc.
- In-depth understanding of enterprise networks and their security concerns.
- Skills to harden servers and network infrastructure.
- Must have knowledge of IDS, IPS, Monitoring tools and Firewalls.
Experience:
- Must have experience in performing network assessment including network and OS vulnerability assessments.
- Experience in conducting security audits of network and system infrastructure.
- Experience in writing technical documentation and reports.