Upvote
Downvote
Cyber Security Analyst / Auditor - UNIX Server / Web / Database - JB
Share Job
- Suggest Revision
Full-time
- Utilizing automated tools, including Tenable and Splunk, these professionals perform documentation reviews, employ checklists and guides to write report and develop a qualitative risk assessment on target organizations.
- Reviewers are expected to be knowledgeable of current STIGs, system configuration requirements for log capture, storage retention, and services in addition to knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)
- Responsible for interviewing organizational subject matter experts in conducting STIG, SRG, and IC policy checklists
- Collect data in support of reviewing a comprehensive Threat Informed Critical Controls List (TICCL), provide written input on review of required security controls, potential vulnerability exploitation, and how MITRE ATT&CK© techniques are plausibly successful based on organizational weaknesses.
- At least five (5) years of experience in system administration, specifically with ACAS platforms such as Tenable, Nessus, and Qualys.
Active Job
Updated 1 month agoSimilar Job
Relevance
Active