Security Technical Analyst
Recruiter
Listed on
Location
Salary/Rate
Salary Notes
Type
This job has now expired please search on the home page to find live IT Jobs.
*** Contract Opportunity ***
Security Technical Analyst
Duration - 3 months initially
Rate - negotiable (Inside IR35)
Location - Slough (remote working initially)
The Role
Due to our continued success, we are growing our Testing functional capability in order to better support our customers that are primarily located in the Berkshire & East Midlands areas. As a result, we are looking for experienced test professionals across all disciplines to start ASAP.
The Opportunity
oIdentify new security threats by conducting continual monitoring, vulnerability assessments and log analysis
oStrong analytical skills with a proven track record of requirements mapping and traceability
oExposure to testing in rigorous security regimes/ design
oCreate technical and managerial level reports and risk assessments for Cloud based applications and infrastructure
oInterface and collaborate with multiple groups and/or managerial staff to eloquently describe and implement security solutions
oExpert knowledge of Cloud infrastructure, security architectures, and standards
oAble to demonstrate clear understanding of current threats to Cloud infrastructure/IT infrastructures / Network Infrastructure at technical and managerial levels
oStrong technical writing and verbal communication skills required
oKnowledge of web security concepts covering network through application layers
oGood understanding of the protocols underpinning the web - TCP/IP, HTTP, SSL/TLS etc...
oGood understanding of hardware load-balancing, firewalls, multi-tiered architectures.
oKnowledge of AWS services and security controls.
oProven industry experience in application and infrastructure security testing
The Person
oHave technical knowledge and hands-on experience with IT/information security/ cyber security / Network Security standards and frameworks such as ISO27001, NIST CSF and GITC
oGood experience in Application & Infrastucture Security Testing including Static Application Secuirty Testing, Dynamic Application Security Testing, Interactive Application Secuirty Testing, Maritime Asset Security And Training , Run Time Application Secuirty Testing and Security Compliance Activities
oGood understanding of OWASP and other penetration testing methodologies. Good knowledge on analysing & reviewing the Pen Test Results
oExperience of security testing toolsets e.g. MicroFocus Fortify SCA (Static Analysis) WebInspect (Dynamic Vulnerability), App Defender, Black Duck, Sonatype (opensource), Qualys (DAST) and TripWire (IP360)
oExperience in Security QA Testing (compliance controls, Threat Management, Security Architecture Assessment, Cloud 3rd Party Risk Assessment, Vulnerability Mgt.)
oSource code review experience.
oExperience in using HP ALM, Jira
oExperience on Security Incident Event Management (ArcSight & Splunk)
oTrack record of developing test security scripts, detailed test planning and test delivery of complex requirements involving multiple applications and platforms.
To apply please upload your most recent CV
LA International Computer Consultants Ltd is an HMG Approved Consultancy and operates as an IT & Engineering Consultancy or as an Employment Business & Agency, depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, we welcome applications from all sections of the community and from people with diverse experience and backgrounds.
Award Winning LA International Computer Consultants Ltd (Recruiter Awards for Excellence - Best IT, Best Public Sector & Gold Awards) and the most prestigious award that any business can receive The Queens Award for Enterprise: International Trade 2015.