Job Description
Roles and Responsibilities:
***Review scanner results and perform vulnerability prioritization based on risk based analysis for remediation.*******
Experience with Qualys (Nessus or Nexpose)
Scripting experience is helpful (Shell, Perl, Python)
Penetration testing experience is a plus
Qualifications
o Manage, modify and tweak security scan profile as per the companys baseline standards.
o Analyze false positives.
o Review scanner reports and work with the remediate issues following a risk based approach.
o Discuss vulnerabilities through recommending and monitoring of remediation activities.
o Evaluate and mitigate risks.
o Maintain detailed documentation of test procedures and findings in the Vulnerability management system.
o Perform security analysis of the different layers of the systems (application database layers) by performing manual testing and automated system vulnerability assessment scans using various web, application, operating systems and database vulnerability scanners (IBM AppScan, and Guardium Database Scanner).
o Demonstrated ability to listen and integrate ideas from diverse views, create partnerships and collaborate with others, advocate and influence, resolve conflicts constructively, and work effectively across boundaries even without active guidance from the management;
o Excellent communication skills both written and verbal include the capacity to communicate complex and technical issues in simple terms; Analytical skills required.
o High ethical standard
Additional Information
Due to the nature of this contract, candidates with U.S. Citizenship or GC Holders are encouraged to apply.