Penetration Tester / Vulnerability Analyst in Durham, NC at MDI Group

Date Posted: 7/10/2018

Job Snapshot

Job Description


Penetration Tester / Vulnerability Analyst
Durham, NC
Direct Hire

Responsibilities:
Develops and executes security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems.
Researches attempted or successful efforts to compromise systems security and designs countermeasures.
Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information and systems.
Performs network and application technical vulnerability assessments using vulnerability assessment tools
Evaluates threats and vulnerabilities to determine and recommend safeguards for system or application owners.
Performs penetration testing activities to demonstrate vulnerabilities and attack chains.
Utilizes penetration testing skills to conduct offensive security practices to gather deeper situational awareness, provide greater security insight of the environment, and assist Incident Response teams with training against advanced threats.

Requirements:

Experience in threat and vulnerability management, penetration testing, security operations.
Deep understanding of how applications, networking, operating systems, and databases work.
As a subject matter expert, act as a leader with other Network Security Engineering team members to support ongoing and long-term initiatives and projects.
Solid operational knowledge of common security technologies (e.g. ACL's - basic,
extended/reflexive, Firewall, IDS/IDP, VPN, etc.); and advanced support and complex change configuration ability in at least one security technologies; competent at intermediate change configurations in more than one security technologies.
Operational experience with multiple security technologies that can affect change management, security management, audit and control, encryption, etc.

Expected Certifications:

CISSP or equivilant plus one or more additional industry certifications like:
CEH
OSCP
GPEN


A GREAT PLACE FOR GREAT PEOPLE TO WORK

Search IT Jobs