Security Analyst (VAPT)

Security Analyst (VAPT)

Cyber Security Works Private Limited
0-2 years
Not Specified

Job Description

What We Look For in a Candidate
Undergraduate degree in Information Security, Computer Science, Computer Engineering, or related field, or equivalent experience.
2+ years experience in Information Security
Experience utilizing multiple vulnerability scanning tools and platforms.
Knowledge of current and emerging cybersecurity threats, vulnerabilities, and technologies.
Awareness of NIST Vulnerability Database pertaining to vulnerability severity ratings.
General understanding of common networking protocols.
General understanding and experience of UNIX derivative operating system distributions as well as various Windows operating systems.
Effective oral and written communication skills and comfort with presenting technical issues to all levels of management, as well as non-technical staff.
General understating on API integration concepts.
Preferred Qualifications:
Applied experience performing vulnerability scanning and vulnerability management functions for medium to large enterprises encompassing network elements/protocols, operating systems, databases, and applications including systems in scope for a compliance standard.
Applied experience with OWASP Top 10, SANS Top 20, and NIST Vulnerability, Database.
Strong problem-solving skills to adapt to client environment and provide support.
Basic knowledge of programming languages such as Python, C#, GoLand or UNIX, Shell, API programming.
Strong understanding of network architecture and switching/routing implementation as it relates to scanner placement.
Awareness of information security industry and regulatory obligations (PCI, FISMA, HIPAA, ISO 27001/27002, NIST Framework, CMMC) pertaining to vulnerability management.

CSW is a US Department of Homeland Security sponsored CVE Numbering Authority (CNA) and a leader in Attack Surface Management. Our risk, security & exposure management, and compliance services have helped government agencies and many companies across diverse industries around the globe to secure their business from ever-evolving threats. We have assisted in securing several governmental entities, including the IT Infrastructures for over 400 public, private organizations in USA, APAC, IND and UAE. Our innovation in vulnerability and exploit research led us to discover 50+ zero days in popular products such as Oracle, D-Link, WSO2, Thembay, Zoho, etc., among others.

For more information please visit our Website

Similar Jobs

People Also Considered

Career Advice to Find Better

Simple body text this will replace with orginal content