Information Security Analyst
Provide security for host, network, and cloud-based applications and systems. Monitor and research real time alerts. Perform computer security incident response activities and coordinate with other teams to record and report incidents. Apply security operations center and security incident response team protocols and procedures. Support new and existing security solutions and partner with the security engineering DevOps teams for the implementation and integration of any new enhancements made to existing security solutions in to improve overall enterprise security. Assist in performing technical assessments and penetration testing of internally and commercially developed applications and systems. Stay abreast of the latest hacker techniques and propose appropriate counter-measures configurations and awareness. Ensure security tools and solutions hardware, software and devices are operating effectively and are updated in a timely manner. Research vulnerabilities reported by CERT and other security organizations. Track and remedy vulnerabilities and conduct access audits and enforcement. Perform forensics in case of a breach and examine malicious software to understand threat nature.
Bachelor's in Computer Science, Information Systems or Software Engineering plus 3 years of experience in information security and/or cyber threat analysis. Also required: CISSP Certification; 3 years of experience programming in Shell, Perl, Python, Ruby, C, or Java; and 3 years of experience with host, network, and cloud-based applications and security systems. All experience may be gained concurrently.
To apply, send resume and cover letter to Thomas Grady, Attn: ISA, WP Company, LLC d/b/a The Washington Post, 1301 K Street, NW, Washington, DC 20071.