New Job Posted
Cyber Security Analyst II
BC Management, Inc. JO# 2965
Position: Cyber Security Analyst II
Location: Reston, VA
Status: Direct hire – Full-time/Permanent
Salary: Salary will depend on experience.
* All candidates must be authorized to work in the United States.
* Bachelor's Degree or equivalent required
* A minimum of 2+ years’ Cyber Security experience
* Demonstrable knowledge of application security, risk assessment, validation of security penetration/dynamic test results, static code testing/scanning/analysis and vulnerability resolution.
Under limited supervision, design and administer procedures in the organization that sustain the security of the organizations data and access to its technology and communications systems. Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organizations systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. May lead or execute simulated attacks or security violations to assess the organizations data security measures.
KEY JOB FUNCTIONS
- Conduct platform or operating system vulnerability scans which assess exposure of system to attacks or hacking. Respond to questions and issues raised regarding viral activity, spam/phishing etc. Produce reports.
- Serve as organization's POC for the third-party certification of security procedures and use of cyber security protections. Ensure that system's security controls, policies and procedures examined, measured and validated against third party standards.
- Design, plan and implement test strategies to support the core infrastructure in the contingency environment for all critical business applications to ensure business continuity in the event of a major business interruption or disaster.
- Participate in internal reviews by auditors, operational risk assessment staff, or compliance/reporting staff to prepare assessments or reports of operational risks associated with IT/IS infrastructure, access to systems, exposure to attacks, etc.
- Participate in developing and testing of new methodologies and systems for recovery of the critical core business processes and the enterprise infrastructure.
- Review commercial products available to enhance corporate hardware, platforms, applications and data. May test or evaluate products under consideration for purchase or licensing.
- Bachelor's Degree or equivalent required
- 2+ years of related experience
- Demonstrable knowledge of application security, risk assessment, validation of security penetration/dynamic test results, static code testing/scanning/analysis and vulnerability resolution.
- Experience with secure coding practices and is capable of conducting security assessments and analysis of applications in order to find vulnerabilities through manual and automated code scanning techniques.
- Ability to identify security requirements for applications and services and to effectively discuss requirements with internal teams and business owners.
- Can explain the risks associated with common application vulnerabilities in order to demonstrate exploitation and then recommend mitigation options.
- Take initiative to promote activities to foster Information Security awareness and education among application development.
- Strong interpersonal and communication skills for developing relationships with individuals and teams across the enterprise (including senior management).
- Familiarity with emerging applications security exploits and willingness to research them.
- Solid understanding of frequently used web application security testing tools and common web / systems application vulnerabilities.
- Familiarity with key security concepts and frameworks such as OWASP, CVE, and CVSS.
- Thorough understanding of application architecture and supporting component.
- Solid Developers with 3+ years of experience with development stack like java, database who are interested in getting trained in Application security are welcome to the team.
As a condition of employment with the client, any successful job applicant will be required to pass a pre-employment drug screen and to successfully complete a background investigation, which may also include a credit check for positions in some areas of our business.
The following statements are intended to describe the general nature and level of work being performed. This is not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel.
All qualified applicants will receive consideration for employment without regard to race, color, religious creed, ancestry, national origin, age, sex or handicap.
Apply to this job at - http://portal.bcmanagement.com/#/jobs/2965
BC Management was recently acquired by Novume/Firestorm Solutions LLC as such, our email has changed.
If you experience any issues applying or to learn more about the position, please contact Alicia Stevens - BC Management Inc. at [email protected] or +1 562-203-7300.