Ampcus inc

Cyber Security Analyst

Ampcus inc$90K — $120K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 4-5 years experience in cybersecurity-related field
  • Proficient in grey and black box penetration testing
  • Expertise in exploiting common web application vulnerabilities
  • Skilled with tools like Metasploit, Burp Suite, and PowerShell Empire
  • Knowledgeable in Windows and Linux operating systems, VMware ESXi, and mobile platforms
  • Solid understanding of networking and cloud architecture
  • Familiarity with OWASP top 10 and vulnerability standards

Responsibilities

  • Conduct recon on applications and networks
  • Perform penetration testing to gain access to targeted systems
  • Analyze vulnerabilities and provide clear reporting on risks
  • Execute penetration tests in Cloud environments like AWS and Azure
  • Translate systems into actionable security test plans
  • Research and maintain skills related to network vulnerabilities
  • Train team members on security tactics and concepts

Benefits

  • Opportunity to work at a leading global cybersecurity firm
  • Access to ongoing training and professional development
  • Collaborative and innovative work environment
  • Hands-on experience with cutting-edge cybersecurity tools
Full Job Description
Ampcus Cyber Inc, a leading global pioneer in Cybersecurity committed to securing businesses against evolving cyber threats, headquartered in Chantilly, VA is looking for a Cybersecurity Specialist to join our Team working from our Corporate Chantilly office.

Job Responsibilities:
  • Perform recon on applications and networks
  • Perform penetration testing and system exploitation against desktops, servers, applications, operating systems, and security systems to gain root and administrator access for highly specialized network systems
  • Perform internal and external pentest against systems to determine vulnerabilities and offer mitigation strategies
  • Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation against information systems
  • Analyze vulnerabilities, delivering clear and coherent written reporting, identifying network risks, and providing mitigation recommendations
  • Conduct penetration and malicious user testing in Cloud environments, including Amazon Web Services (AWS), Azure, and on-premise systems
  • Translate systems and applications into security test plans, performing hands-on security testing and leveraging adversarial tactics
  • Must be able to use at least two of the following proficiently and instruct others on them: Nessus, Burp, Metasploit, and the Social Engineering Toolkit.
  • Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption
  • Ability to assist with researching and evaluating security policies and guidance
  • Ability to train other team members on security concepts
  • Excellent communication skills
Required Skills
  • 4-5 years of experience in related field
  • Demonstrated real-world experience performing grey and black box penetration testing.
  • Must be proficient in exploiting common web application vulnerabilities like XSS, CSRF, Command Injection, SQLi, single sign-on bypass, etc.
  • Must be proficient in any of the following: PowerShell Empire, Metasploit Framework, Cobalt Strike, Burp Suite, Canvas, Kali Linux, A/V evasion methodologies, Exploit Dev.
  • Must have solid working experience and knowledge of Windows operating systems (incl. Active Directory), Linux operating systems; VMware ESXi or similar; mobile platforms are a plus.
  • Solid understanding of networking, TCP/IP, virtualization and cloud architecture.
  • Strong familiarity with some of the following: OWASP top 10, DoD and NSA Vulnerability and Penetration Testing Standards.
  • Knowledge of exploitation concepts including phishing and social engineering tactics, buffer overflows, fuzzing, SQLi, MiTM, covert channels, secure tunneling and open-source exfiltration techniques.
  • Experience with Linux, Windows, wireless, and virtual platforms
  • Knowledge of information security policies and guidance
  • Proactive interest in emerging technologies and techniques related to penetration testing
Preferred Skills and Qualifications
  • Experience with IOT device is a plus
  • Certifications such as CEH or OSCP
  • Malware analysis or digital computer forensics experience is a plus
  • Scripting (Windows/*nix), Bash, Python, Perl or Ruby, Systems Programming is a plus

Similar Jobs

More Jobs at Ampcus inc

More Information Technology Jobs

Find similar Cyber Security Analyst jobs: