Technical Security Analyst
Dulles, VA 20166
Bachelors degree with a minimum of 1 year of information security work experience.
A strong interest in the field of information security.
Fluent in a variety of web application protocols, operating systems and networking technologies.
Strong understanding of common network vulnerabilities, OS vulnerabilities (Linux, Windows and OSX), patching and attack patterns.
Intermediate understanding of OWASP Top 10 vulnerabilities such as XSS, XSRF, SQL Injection, Command Injection, SSRF, Cookie Manipulation among others.
Experience with testing applications against OWASP Top 10 Vulnerabilities.
Strong analytical, problem solving and engineering skills.
Good written and verbal communication skills.
Solid organizational skills and strong customer service skills.
Experience with parsing / analysis of large data sets (e.g. vulnerability scan results).
Certified Information Systems Security Professional (CISSP).
Certified Ethical Hacker (CEH)
Familiarity with Enterprise Vulnerability Management tools such as Rapid 7 Nexpose, Nessus and Qualys. Familiarity with Amazon Web Services (AWS) security.