*Hi,* *Hope You are doing good,* * * *Please send me resumes to [email protected], if you feel comfortable with the below requirement.*
Job Title: Web Penetration Tester/Security Risk Analyst Location: McLean, VA Duration: 6 month contract, will most likely be extended up to 24 months !! HOT REQUIREMENT !! !! IMMEDIATE NEED !! Must-haves: 3-5 years of web penetration testing experience Experience using Burp Suite and AppScan (experience with any scanning tool can work, as long as candidate is able to use Burp/AppScan to analyze results -- Burp/AppScan are the tools used by the client.) Experience performing manual penetration testing (very important) Experience supporting risk assessment: looking at new or existing applications or architecture for security risks Experience sorting through false positives to identify real risk Able to create well-written and well-documented reports based on identified risks Have knowledge of network security architecture (knowledge of how the network is set up for firewalls) Cisco experience or strong knowledge (understanding of and/or experience with: routers, switches, firewalls, VPN, ASA, etc.) Familiar with NIST 800-53, familiar with TCP/IP host level security and Security framework ISO27K Plusses: Security certifications (CEH, CISSP, etc.) IT Auditing experience (CISA certification would be a plus) DBscan (Database Scan a huge plus) Strong networking background/knowledge Day-to-Day: Insight Global is looking for a Senior Web Penetration Tester/Security Risk Analyst to work in somewhat of a hybrid role. The candidate will be looking at new and existing applications and infrastructure to find any security breaches, and must be able to sort through false positives to identify real risk. The candidate should have a very strong understanding of network security and risk, and any type of IT auditing experience is a huge plus. The candidate will be performing manual testing and using various penetration testing tools/scanning tools to look for vulnerabilities. The candidate should also have knowledge of NIST 800-53, TCP/IP host level security, and Security framework ISO27K. *Regards,* *Amer Khan | Executive Recruiter* *Direct:(609) 301-0362* *[email protected] * -- You received this message because you are subscribed to the Google Groups "GTA DBA" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/gtadba?hl=en.
