Technical Security Analyst
22000 Aol way Dulles, VA 20166
We are currently seeking a Technical Security Analyst to deliver information security solutions and services, work within the vulnerability management team, identify and mitigate risks to protect information assets, computing infrastructure, applications, and data.
The ideal candidate will have hands-on security engineering experience, a minimum of 1 year of information security work experience. Strong understanding of OWASP Top 10 vulnerabilities such as XSS, XSRF, SQL Injection, Cookie Manipulation among others.
- Knowledge of web application protocols, operating systems, networking technologies and common network vulnerabilities, OS vulnerabilities (Linux, Windows and OSX), patching and attack patterns.
- Experience with Splunk for analysis. Desired Qualifications Certified Information Systems Security Professional (CISSP).
- Certified Ethical Hacker (CEH) Familiarity with Enterprise Vulnerability Management tools such as Rapid 7 Nexpose, Nessus and Qualys. Familiarity with Amazon Web Services (AWS) security.
The position responsibilities include performing vulnerability scan, analysis, validation and remediation activities, network and application penetration testing, validating vulnerabilities discovered through code analysis and assessment of the impacts of internal and external threats.