*Please respond back to sate...@protegellc.com <sate...@protegellc.com> or call me on 703 596 1600 x 104.*
*Job Title: Cyber Security/Application Security Analyst && Network/Endpoint Security Analyst* *Location: Reston, VA / Chicago, IL / Boston, Ma* *Duration : 12 Months* *Cyber Security/Application Security Analyst – Job Description* Performs vulnerability scans using tools like Qualys, Nessus and assists in management of scanning infrastructure Perform web application vulnerability assessments and penetrations tests Perform web, mobile, and thick application Tool-based/Manual penetration tests. Perform external, internal, and wireless network penetration tests Create and deliver vulnerability and penetration test reports to clients Knowledge of current security threats, vulnerabilities and web application attacks. Review source code and perform vulnerability testing of web application using tools such as IBM AppScan, HP Fortify, Whitehat, Rapid7 Nexpose, and Burp. Assess effectiveness of security controls and report risk to development team. Report to management recurring risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance with the SDLC. Advise information security and application development leadership regarding strategies to promote secure coding practices to address identified risks. Maintain risk register and routinely update management. Threat model web applications and work with development team throughout the SDLC Provide security and compliance requirements for software development projects Knowledge of Risk Management of information and IT assets through appropriate standards and security policies. Collaborate with clients to create remediation strategies that will help improve their security posture Advanced security event detection and threat analysis for complex and/or escalated security events Experience with PCI, HIPAA or SOX audit and compliance Familiarity with Federal and DoD security standards such as NIST. Experience in implementation of ITIL practices and ISO 2700 family of standards *Network/Endpoint Security Analyst – Job Description* Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information Monitors and proactively mitigates information security risks Identify, analyze, and document actions taken by malicious actors Determine sophistication, priority, and threat level of identified malware Experience with Anti-Virus, Host Firewall, Host Application Control, Host Data Loss Prevention, Network Access Control and management of McAfee suite (ePO consoles), Symantec Endpoint Management Platform(complete suite), Sophos Endpoint/Mobile Suite. Experience with PCI, HIPAA or SOX audit and compliance Examine media and malware analysis reports and operational reporting from incidents to correlate similar events, tradecraft, and TTPs of malicious activity Conduct log and system analysis for various system, and network and security devices capabilities to including Next-Gen Firewalls – Checkpoint, Palo Alto, Cisco ASA, WAFs - Imperva, Database monitoring solutions, Identity Management Solutions, Virtualized platforms, Linux/Unix and Windows operating systems. include routers, Windows, Linux, and UNIX. Design, Plan and Implement VPN’s – Site-to-Site and Remote Access. Good working knowledge on URL Filtering, Mail Filtering and Web Filtering Technologies. Experience with McAfee Nitro, Splunk, IBM QRadar and ArcSight SIEM tools. Experience working within a wide range of environments to include Linux, UNIX, Windows in addition to a strong understanding of networking, the OSI model, and TCP/IP protocols Familiarity with Federal and DoD security standards such as NIST. Experience in implementation of ITIL practices and ISO 2700 family of standards *Thanks & Regards* *Sateesh | Lead Technical Recruiter* *Protege, LLC.* *12020 Sunrise Valley Dr, Suite 100, Reston VA 20191* *Email: sate...@protegellc.com <sate...@protegellc.com> | Gtalk: recruiter.sateesh* *Office: 703 596 1600 x 104; Fax: 877 481 9005* *Visit us at: www.protegellc.com <http://www.protegellc.com>* -- You received this message because you are subscribed to the Google Groups "US_IT.Groups" group. To unsubscribe from this group and stop receiving emails from it, send an email to us_itgroups+unsubscr...@googlegroups.com. To post to this group, send email to us_itgroups@googlegroups.com. Visit this group at https://groups.google.com/group/us_itgroups. For more options, visit https://groups.google.com/d/optout.