Analyst
Ref No.: 18-33682
Location: OVERLAND PARK, Kansas
Position Type:Full Time/Contract
Start Date: 05/15/2018
Requirement ID: 5635505
Role name:      Analyst
Location: TCS - Rockville, MD | OVERLAND PARK | OVERLAND PARK, KS
Experience (Years): 4-6
Duration (Months): 12
 
Role Description:
                     Participate in Agile grooming sessions, creating test criteria for each user stories     Carry out application and infrastructure penetration tests Review physical security and perform social engineering tests where appropriate   Keep up to date with latest testing and ethical hacking methods       Coordination between Onshore and Offshore            Testing of published content via front end using manual or automation tools.         Adjust and respond to scheduling and/or technical changes, with the ability to analyze and communicate any increased risks and/or testing considerations resulting from such changes. Make suggestions for security improvements Enhance existing methodology material           Report on findings to a range of stakeholders           Report status to Management
 
Competencies: Assurance : Testing Concepts, Process and Methodology, Assurance : Security Testing
 
Essential Skills:
         Deep understanding of 3-tiered Web Application and Mobile Application Architectures     Manual Penetration Testing Experience (i.e. mapping applications, injecting SQLi, XSS, exploit creation)          Must have Commercial Web Application Tool Experience (i.e. Burp, AppScan, WebInspect)          Network Penetration Testing Tool Experience (i.e. Nmap, Nessus, Wireshark, Metasploit)        Exceptional communication skills, with the ability to explain the technical details of OWASP Top 10 and other vulnerabilities from C-levels to developers in a large professional environment
 
Desirable Skills:      Experience in development and conducting secure code review (desired)    Experience conducting reverse engineering (desired)      Experience with web development and scripting languages (e.g., JavaScript, Java) (desired)
 
Key Words: OSCP, Testing, Penetration, OWASP