Web Security Vulnerability Analyst

CyberCore Technologies
Linthicum Heights, MD
Sep 15, 2020
Sep 20, 2020
Full Time
JOIN THE CYBERCORE TECHNOLOGIES TEAM. We are GROWING ! Bring your Technical Capabilities, Enthusiasm, and Team Focus . CyberCore Technologies has a New Opportunity for a Web Security Vulnerability Analyst Active Secret Required in Linthicum, MD . CyberCore Technologies provides Services for Government and Commercial Clients. We have procured, integrated, and delivered over $2.6B in Information Technology products. CyberCore provides a wide range of professional services and solutions with specific strengths in Cyber Security, Networking, Engineering/Operations, and Software Development. At CyberCore, Our Goal is to Maintain a Healthy Work-Life Balance and Provide Interesting Work Supporting Our Nation s Security. CyberCore is Proud to Offer: Competitive Salaries; Corporate PTO Plan; Education Reimbursement and Bonuses for Completing Certifications; Medical, Dental, and Vision Insurance for Team Members and Families; Social and Philanthropic Events Celebrating Our Team and Giving Back to Our Community. For more information on CyberCore Technologies, go to www.cybercoretech.com Job Responsibilities : This is a White Hat Ethical Hacking Role to Identify and Expose Vulnerabilities. The Vulnerability Management Team provides technical support to the DoD Vulnerability Disclosure Program (VDP) for the Defense Cyber Crime Center (DC3). These activities directly support the mission to improve defense of the DoD Information Network (DoDIN), by receiving, validating, and disseminating cybersecurity vulnerabilities reported by private-sector researchers. The VDP team tracks and analyzes reported vulnerabilities and mitigation actions by systems owners to identify gaps in DoDIn defenses; areas requiring increased attention, and areas for improvement. This position performs technical validation and initial severity assessment of externally reported web security vulnerabilities. Required Candidate Qualifications : Active Secret Clearance. Bachelors Degree in Computer Science, Software Engineering, Computer Engineering, Electronics Engineering, or Electrical Engineering and 3 years of related experience. 5 years of experience required with No Degree. Sec+ or CEH. Ability to Read JavaScript, PHP, and SQL Experience with Kali LINUX. Understanding of software and web application security and common vulnerabilities (CWE, CVE) Ability to validate web vulnerabilities on live DoD web properties using manual techniques, resourceful problem-solving, and common tools Ability to recognize, interpret, and communicate in information assurance vulnerability management (IAVM), Risk Management Framework (RMF), and Security Technical Implementation Guides (STIGs) Knowledge of various software testing methodologies, test case creation and the reporting process Familiar with Layer 2/3 network and security appliance capabilities; familiar with TCP/IP protocol stack Aware of industry trends; IoT, ICS/SCADA, containerization technologies, Dev-Sec-Ops CyberCore Technologies is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or any other characteristic protected by law.