The Security Analyst will work with Sword & Shield customers to conduct network vulnerability assessments, application security assessments and penetration testing. The position will report to the Director of Security Assessments and will work with senior staff members to deliver security testing services to a diverse clientele.
The successful candidate will be self-disciplined and able to work on individual tasks, sometimes without clear requirements, and to work well in a team environment. The ideal candidate will have experience in most of the following areas:
Familiarity with well-known security assessment toolkits.
Strong understanding of Metasploit, Nessus, Nmap, and other common assessment tools
Strong understanding of information security management with experience in vulnerability assessments, penetration testing, wireless security assessments, social engineering (e.g “phishing”, “baiting”, “tailgating”, “pre-texting”), and Telco/VoIP security assessments
BS degree (or higher) in a technical discipline.
IT experience including at least one (1) year of IT security
Strong understanding of Unix and Windows platforms, as well as TCP/IP protocols
Strong MS Office skills
Strong verbal and written communication skills
Knowledge of database, applications, and/or web server design and implementation
DESIRED (But Not Required):
SANs GIAC GPEN Certification
Offensive Security Certified Professional (OSCP) Certification
Certified Information Systems Security Professional (CISSP) Certification
General knowledge of scripting languages such as Perl, Python, and others is preferred
IDEAL PERSONAL CHARACTERISTICS:
Strong documentation skills
Strong interpersonal skills
Strong, creative problem solving and analytical thinking
Willing to accept new challenges and learn in new areas
Flexible and responsive to changing situations; adaptable to changing requirements
In addition to a career in the challenging world of computer and network security, Sword & Shield Enterprise Security, Inc. offers competitive salaries, full benefits, participation in 401(k), and opportunities for professional growth and development. We offer the opportunity to work with cutting-edge security technologies in a stimulating work environment.
Metasploit Nessus Nmap assessment tools vulnerability assessments penetration testing wireless security assessments social engineering Telco VoIP TCP IP MS Office SANs GIAC GPEN OSCP CISSP Perl Python