Log In Sign Up

Vulnerability Scanning & Analytics Engineer

Premium Job From SidTech

Recruiter

SidTech

Listed on

5th May 2021

Location

United Kingdom

Type

Contract

Start Date

2021-05-04 00:00:00

This job has now expired please search on the home page to find live IT Jobs.

JOB DESCRIPTION Job Title:Vulnerability Scanning & Analytics EngineerInside IR35 Location:UK Department/Practice: Cyber Practise Job Purpose and primary objectives: Vulnerability Scanning & Analytics Engineer Key responsibilities (please specify if the position is an individual one or part of a team): MUST HAVE Vulnerability Scanning and Analysis ? Web application vulnerability scanners using tools like Qualys WAS, WebInspect, AppScan ? Database vulnerability scanners using tools like AppDetective, DbProtect Experience working on platforms and components like: ? Unix/Linux (Solaris/Red Hat) and MS Windows Operating Systems ? Network Switching/Routing and TCP/IP ? Databases (e.g., MS SQL, Oracle, DB2) Duties/Tasks and Responsibilities: ? Will be responsible for conducting vulnerability scans at the network, operating system, database, and application levels on financial systems within this organizations enterprise.  ? Will be perform vulnerability scanning and analysis to eliminate false positives and to aggregate findings by specific best practice criteria.  ? Provide recommendations for remediation and collecting evidence to verify the vulnerability no longer exists.   ? Validate the vulnerabilities identified against the National Institute of Science and Technology (NIST) Framework, National Vulnerability Database (NVD) and Security Best Practice standards such as CIS Benchmarks, DISA STIGs and vendor hardening standards. ? Perform full scope Risk Management processes for a federal client, to include Certification and Accreditation (C&A), FISMA Self Assessments, Technical Assessments (Vulnerability analysis, penetration testing), and Risk Assessments.  ? Use vulnerability and security testing tools and review the results from tools such as Nessus, HP WebInspect, Qualys, Guard, AppDetective, and Burp Suite.
  Key Skills/Knowledge: Good to have skills: ? Proficiency understanding the technical architecture of IT systems built using Windows, UNIX, Linux, IBM AIX, VMware, Citrix, Oracle and MySQL platforms.  ? Strong documentation and communication (written and verbal) skills. ? Working knowledge of common network devices ? Working knowledge of Windows and Unix operating systems ? Working knowledge of common database platforms ? Self-motivated and able to work in an independent manner. Experience required: Must have 10-15 yrs of Cyber Security experience

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below:

Google Chrome
Google Chrome
 Opera
Opera
 Mozilla Firefox
Mozilla Firefox