Position: Information Security Analyst - Security Certifications Location: Herndon, VA 20171 Job Type: Full-time, Entry-level Corsec is at the forefront of working with top IT Security companies to achieve FIPS 140-2, CC and DoDIN APL certifications. We are looking for an entry-level, full-time Information Security Analyst to join our team. Duties Examine IT products against security certification standards in order to determine and document compliance gap reports. Analyze design, architecture and implementation details of IT products and produce technical documentation specific to security certifications. Configure IT products to meet compliance requirements, and produce certification-specific deployment guidance. Produce testing reports by conducting functional, behavioral, and vulnerability testing of the IT products. Communicate effectively with security product vendors, testing facilities personnel, and certifying authorities to address compliance gaps, testing queries and documentation comments. Education Bachelor's degree in Information Systems, Cyber Security, Computer Engineering, or a comparable field. Requirements Deep understanding of at least two of the following IT concepts: networking, cryptography, operating systems, cybersecurity, information assurance and risk management. Working knowledge of commonly deployed enterprise IT solutions such as Active Directory, NTP servers, syslog servers, VMware vSphere, vCenter and ESXi etc. Strong analytical and technical skills in assessing IT products, excellent organizational, and great attention to detail in reporting and tracking compliance activities. Ability to install, configure and troubleshoot networking products such as Firewalls, Ethernet Switches, Routers, IDS/IPS, SIEM, Cybersecurity tools etc. Ability to use vulnerability scanning tools such as Nessus or Wireshark, and generate reports on risks and mitigation plans. Excellent technical writing skills - must be able to prepare consistent and quality technical documentation. Strong oral presentation skills - ability to articulate requirements in technical and non-technical terms to customers, peers and management. Ability to travel nationally and internationally as needed. US Citizen. Bonus Familiarity with Common Criteria, FIPS 140-2, DoDIN APL, or NIST SP 800-53. Experience with STIG testing or configuring NIST SP 800-53 controls. Background in development of SAR and POA&Ms.