Job Description:
Manager Notes:
· Cybersecurity Threat Analyst with focus on Web Application Firewall (WAF) vulnerability scanning
· Preferred WAF tool experience: F5
· Minimum 4+ years of experience in cybersecurity
· Strong focus on application vulnerability assessment and remediation
· Hands-on experience using vulnerability scanning platforms
· Python experience required for REST API calls and automation
· Additional skills: Jenkins, JSON
· Active CISSP or CEH certification required (jen will confirm the list of certificates)
Description:
JOB SUMMARY:
· We're seeking an experienced analyst to join our team, specializing in Web Application Firewalls (WAFs) and application vulnerability scanning.
· As a WAF and Vulnerability Scanning analyst, you will be responsible for implementing and managing our WAF and vulnerability scanning solutions.
· You will work closely with our cybersecurity team to ensure the security and integrity of our web applications.
Essential Functions:
· Implement, and manage WAF solutions, including configuration, tuning, and maintenance
· Develop and maintain Python scripts to automate WAF configuration, monitoring, and reporting
· Conduct application vulnerability scanning and analysis using enterprise grade tools
· Develop and maintain Python scripts to automate vulnerability scanning, analysis, and reporting
· Collaborate with development teams to integrate security testing into the CI/CD pipeline
· Analyze and respond to security incidents, including WAF alerts and vulnerability findings
· Develop and maintain technical documentation for WAF and vulnerability scanning, including procedures, diagrams, and knowledgebase articles
Additional Required Qualifications:
· 4+ years of experience in a related field, with a focus on WAFs, vulnerability scanning, and/or application security
· 2+ years of experience with Python programming
· Strong knowledge of web application security, including OWASP Top 10 and web application attack techniques
· Understanding of security concepts and controls for web applications and networks
· Strong analytical and problem-solving skills
· Excellent communication and interpersonal skills
· Python Requirements:
· Python is a critical component of this role. You must have strong Python programming skills
· Proficiency in Python 3.x
· Experience with popular Python libraries, such as requests, BeautifulSoup, json, etc.
· Ability to write efficient, scalable, and maintainable Python code
Required Work Experience:
· 5+ years related work experience
· 4+ years in Cybersecurity/1+ years Information Technology Infrastructure
Required Education:
· Related Bachelor's degree or additional related equivalent work experienceComputer Information Systems with Cybersecurity
Required Licenses and Certifications:
· Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH)
· **In alignment with GW Cybersecurity requirements, contractors must posses a relevant cybersecurity or technical certification for this role. If a relevant certification is not possessed, the contractor will be expected to obtain a relevant certification within 6 months of hire. (Relevant certification will be defined by hiring manager)
Never miss an opportunity! Create an alert based on the job you applied for.
