Previous Job
Previous
Security Analyst
Ref No.: 18-29709
Location: Alpharetta, Georgia
Position Type:Contract
Start Date: 04/30/2018
Security Analyst
Alpharetta GA
Long Term


  • Help implement security code analysis tools and framework.
  • Knowledge of white box security testing to assess and validate application security.
  • Knowledge of application security best practices.

Explain and demonstrate vulnerabilities to application/system owners, and document recommendations for mitigation.
  • Monitor and track progress of found vulnerabilities.
  • Issue reports on assigned application and system scans.
  • Training to developers and relevant staffs.
  • Ability to self-direct, and provide direction/guidance to individuals or small teams. Prior experience decomposing larger objectives into smaller, defined tasks.
  • Contribute, influence, and provide security controls and requirements to various business units and product lines within event.

Subject Matter Expert in security architecture.
  • Knowledge of OWASP Top 10 Vulnerability.
  • Experience of Vulnerability Assessment and Penetration Testing.
  • Experience on Testing Tools. Ex - Nessus, Nmap, Acunetix, Appscan, Metasploit, Burp Suite, Wireshark, Cain & Abel,
  • Keyskills OWASP Application Security, Security Analyst Vulnerability Assessment Penetration Testing information security
  • Formulate scenarios and potential attacks that a malicious attacker may use/perform in order to gain control of the Time Inc. network
  • Identify, document, measure and communicate technical Information Security risks across the organization's data networks, systems, and applications using blended toolsets and exploitation techniques to identify attack surfaces
  • Knowledge of variety of technical penetration testing engagements (external, internal, web application, cloud, social engineering, wireless, etc.) designed to identify where sensitive data can be obtained using unauthorized methods
  • Document and track security remediation to ensure remediation steps are effective in mitigating the possible exploitation of sensitive data and persevering the integrity and confidentiality of critical information systems
  • understanding of coding and scripts, and manage in agile development model
  • Integrating
security
tools,
standards,
and
processes
into
the
 product
life
cycle
(PLC).
  • Interact with admins,
developers
and
QA
personnel
 with
 the
appropriate
level
of
security
knowledge


Improving
and
supporting
application
security
tool
 deployments
including
static
analysis
and
runtime
testing
 tools.
  • Improving
and
maintaining
secure
development
standards.