Cyber Security Analyst
2 months ago
- Perform penetration testing against products and systems, including web applications, web services, and mobile devices.
- Assist with coordination of vendor pen testing services with internal development teams.
- Collaborate with stakeholders to develop remediation strategies.
- Demonstrating practical/working exploitation of security flaws.
- Develop and enhance process to automate the delivery of application security metrics.
- Review SAST/DAST output for false positives. Assist development with remediation.
- Serve as an application security subject matter expert.
- Participate in threat modeling exercises.
- Effectively communicate vulnerability details, risks, and potential impacts to, application owners, developers, stakeholders, and partners.
- Act as a mentor for junior team members/interns.
- Design, implement, and support security-focused tools and services.
- Develop tools that improve security testing, reporting, and monitoring.
The Skills You Bring
Requirements
- 3+ years of experience in manual penetration testing of web and mobile applications.
- Identify, research, and evaluate current vulnerabilities, provide remediation and configuration guidance. Collaborate with stakeholders to develop remediation strategies.
- Ability to interact with company personnel at all levels and across all business units to comprehend business imperatives. A strong customer/client focus, with the ability to manage expectations appropriately, to provide a superior customer/client experience and build long-term relationships.
- Competent to work independently at an advanced technical level.
- Produce well-written, detailed reports that describe vulnerabilities/risks and that provide specific remediation guidance.
- Understanding of cloud technologies and environments (AWS, Azure, Google).
- Ability to demonstrate a clear understanding, at an enterprise level, of application, network, infrastructure, and data security architecture.
- Excellent analytical skills, able to manage multiple projects under strict timelines, work well in a demanding dynamic environment, and meet overall objectives.
- Ability to work under pressure and manage competing priorities.
- Knowledge of web application frameworks, deployment technologies and security software.
- Scripting capabilities for creating custom scripts to identify/exploit vulnerabilities.
- Strong writing skills to produce detailed reports for consumption by stakeholders at all levels from operations to executive.
Desired Skillset, Experience, and/or Training
- Proven work experience in manual secure code review.
- Experience working with GitLab Ultimate CI/CD technology, shift-left tools, and application security workflows.
- GPEN, OSCP, CISSP, GWAPT, CEH, or similar certifications.
- Desired scripting experience: One or more of Python, JavaScript, PowerShell, shell script, Ruby, PHP, LUA etc.
- Bachelor’s degree in Information Technology or Computer Science, or equivalent experience.
- Inherent passion for information security and service excellence.
- The ability to adapt to new situations and the desire to learn and stay current with AppSec trends, threats, and risks.
We have other current jobs related to this field that you can find below
-
Cyber Security Analyst
4 weeks ago
South Brunswick, United States Precision Technologies Full timePerform penetration testing against products and systems, including web applications, web services, and mobile devices.Assist with coordination of vendor pen testing services with internal development teams.Collaborate with stakeholders to develop remediation strategies.Demonstrating practical/working exploitation of security flaws.Develop and enhance...
-
Senior Cyber Security Engineer
3 weeks ago
Brunswick, United States ValidaTek Full timeCompany Overview: At ValidaTek, we modernize and optimize IT services to solve some of the most critical challenges facing federal civilian and defense agencies. From customers to partners to top-talent employees, ValidaTek puts people first, empowering them to exceed expectations and transform government organizations. Our success starts and ends with our...
-
PCSS Student Security Analyst
4 weeks ago
South Orange, United States Seton Hall University Full timePCSS Student Security Analyst 2024-2025 Job no: 496288 Full time/Part time: Part-time Location: South Orange Categories: Student Employment JOB SUMMARY: Student Security Analyst will work within Corrigan Hall on reviewing and analyzing security systems, security reports and processes. Student Security Analysts will document all work done and provide...
-
Security Analyst
1 hour ago
Windsor charter Township, United States ATC Full timeShort Job DescriptionThe Security Analyst position works as a member of the Vulnerability Management Team. The Senior Security Analyst position reviews and remediates cyber incidents and vulnerabilities found by IT level analysts to IT security specialists and managers to maintain the confidentiality, integrity, and availability of State of Michigan data. ...
-
Pcss Student Security Analyst 2024-2025
3 weeks ago
South Orange, United States Seton Hall University Full timePCSS Student Security Analyst 2024-2025 **Job no**: 496288 **Full time/Part time**: Part-time **Location**: South Orange **Categories**: Student Employment **JOB SUMMARY**: Student Security Analyst will work within Corrigan Hall on reviewing and analyzing security systems, security reports and processes. Student Security Analysts will document all work...
-
Cyber Security Architect
4 weeks ago
South Jordan, United States Motion Recruitment Full timeAre you looking for a Security Architect opportunity? This Philly-based Cloud Hosting company is looking to bring on a Security Architect onto the team. The organization has a mature security program, so you will be hopping into an already established team. You must be located within driving distance to South Jordan, Utah as this is a hybrid role. As the...
-
IT Security Analyst 3
1 hour ago
Windsor charter Township, United States TekWissen ® Full timeJob Title: IT Security Analyst 3 Location: Dimondale, MI, 48821 Duration: 12 Months Job Type: Contract Work Type: Hybrid Pay Rate: $50 - $55/hr on W2Overview: Tekwissen group is a workforce management provider throughout the USA and many other countries in the world. The below Client runs through fifteen executive departments which carry out the day-to-day...
-
Cyber Security Architect
3 weeks ago
South Jordan, United States Motion Recruitment Full timeAre you looking for a Security Architect opportunity? This Philly-based Cloud Hosting company is looking to bring on a Security Architect onto the team. The organization has a mature security program, so you will be hopping into an already established team. You must be located within driving distance to South Jordan, Utah as this is a hybrid role. As the...
-
Cyber Security Architect
2 weeks ago
South Jordan, Utah, United States Motion Recruitment Partners LLC Full timeAre you looking for a Security Architect opportunity? This Philly-based Cloud Hosting company is looking to bring on a Security Architect onto the team. The organization has a mature security program, so you will be hopping into an already established team. You must be located within driving distance to South Jordan, Utah as this is a hybrid role. As the...
-
Senior Cyber Security Architect
4 weeks ago
South Jordan, United States Motion Recruitment Full timeLooking for a Security Architect opportunity? This Philly-based manufacturing company is looking to bring a Security Architect onto the team. With a mature security program, you'll join an established team. This hands-on, technical role involves designing and implementing security architectures. Hybrid in South Jordan, Utah. As the Security Architect,...
-
Beavercreek Township, United States KBR Full timeTitle: Technical Professional Leader; Cyber Security Engineer KBR is seeking a highly motivated Cyber Security Engineer to support an Air Force Life Cycle Management Center Aircraft Acquisition program at Wright-Patterson AFB, OH. Candidate will provide high level subject matter expertise regarding cybersecurity engineering support for AFLCMC programs....
-
Beavercreek Township, United States KBR Full timeTitle:Technical Professional Leader; Cyber Security EngineerKBR is seeking a highly motivated Cyber Security Engineer to support an Air Force Life Cycle Management Center Aircraft Acquisition program at Wright-Patterson AFB, OH. Candidate will provide high level subject matter expertise regarding cybersecurity engineering support for AFLCMC programs....
-
24-13-s Cybersecurity Analyst 1
2 weeks ago
Township of Hamilton, United States NJ Office of Homeland Security and Preparedness Full time**JOINING NJOHSP** If you are looking for an exciting and rewarding career in public service, then come join our team of dedicated professionals. We strive to cultivate a workplace environment that rewards innovation and creativity, and which encourages employees to be forward-thinking, collaborative, and above all, united in our common mission to keep New...
-
Senior Risk and Security Analyst
5 days ago
Mount Laurel Township, United States Prime Hires Full timeTitle: Business Information Security OfficerContract Period: 6 monthsPay: $61/hr.Location: Mount Laurel Township, New Jersey (Hybrid)SUMMARY OF DAY-TO-DAY RESPONSIBILITIES:Lead the identification and assessment of technology and cybersecurity risks across the bank's digital assets, IT infrastructure, and operations, ensuring alignment with the bank’s risk...
-
IT Security Analyst
1 week ago
South Burlington, United States Vermont Federal Credit Union Full time**Vermont Federal Credit Union values each individual and their unique abilities and strengths to help form the foundation of Vermont Federal’s culture. Our employees are at the core of Vermont Federal and we strive to make that a priority every day. As an organization, our stated Purpose is to help Vermonters prosper, no matter where they may be on...
-
IT Security Analyst
1 month ago
South Burlington, United States Vermont Federal Credit Union Full timeVermont Federal Credit Union values each individual and their unique abilities and strengths to help form the foundation of Vermont Federal’s culture. Our employees are at the core of Vermont Federal and we strive to make that a priority every day. As an organization, our stated Purpose is to help Vermonters prosper, no matter where they may be on life’s...
-
IT Security Analyst
1 month ago
South Burlington, United States Vermont Federal Credit Union Full timeVermont Federal Credit Union values each individual and their unique abilities and strengths to help form the foundation of Vermont Federal's culture. Our employees are at the core of Vermont Federal and we strive to make that a priority every day.As an organization, our stated Purpose is to help Vermonters prosper, no matter where they may be on life's...
-
Senior Cloud Security Engineer
2 weeks ago
East Township, United States BlueVoyant Full timeJob DescriptionJob DescriptionSenior Cloud Security EngineerLocation: Remote - East or Midwest United States PreferredUS Citizenship RequiredConquest Cyber, a BlueVoyant Company, understands that our enemies are not simply amateur hackers, but highly motivated, well-funded nation states and criminal organizations. By targeting our nation’s defense and...
-
Senior Cloud Security Engineer
4 weeks ago
East Township, United States BlueVoyant Full timeJob DescriptionJob DescriptionSenior Cloud Security EngineerLocation: Remote - East or Midwest United States PreferredUS Citizenship RequiredConquest Cyber, a BlueVoyant Company, understands that our enemies are not simply amateur hackers, but highly motivated, well-funded nation states and criminal organizations. By targeting our nation’s defense and...
-
Program Analyst
2 weeks ago
Brunswick, United States Transportation Security Administration Full timeSummary Securing Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American way of life. In cities across the country, you would secure airports, seaports, railroads, highways, and/or public transit systems, thus protecting America's transportation infrastructure and...
