Overview
On Site
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - 12 Month(s)
Skills
etc.).
Security Operations (Vulnerability Management
Penetration Testing
Incident Response
Identity Access Management
Job Details
IT Security Analyst
Richmond, VA Hybrid
12 Months
In Person Only
Richmond, VA Hybrid
12 Months
In Person Only
JD:
IT security or risk assessment certifications are advantageous (CISM, CCSP, CISSP, CEH, CompTIA Pentest+ and/or CompTIA Security+)
Expertise in using automated vulnerability scanners like Nessus, Qualys, Retina, and/or Tenable.
we are really looking for someone who is strong in Security Operations (Vulnerability Management, Penetration Testing, Incident Response, Identity Access Management, etc.). A few of the candidates were strong in Risk Management (Risk Assessment, Data Classification, Audits, etc.) but we already have those skills on our team. The remaining candidates mostly struggled to answer basic technical questions relating to security and seemed to mostly come from more IT Operations backgrounds. We are looking for an experienced person as this is not an entry level opening.
General things to consider when screening:
Experience with vulnerability management is key for this position.
Experience with application penetration is key for this position.
Experience with Dev SecOps/Secure Software Development Lifecycle (Secure SDLC/SSDLC)/Secure by Design is key for this position.
Scripting and automation experience is highly desired for this position.
Interpersonal skills and being able to talk with and manage stakeholders are key for this position.
IT security or risk assessment certifications are advantageous (CISM, CCSP, CISSP, CEH, CompTIA Pentest+ and/or CompTIA Security+)
Expertise in using automated vulnerability scanners like Nessus, Qualys, Retina, and/or Tenable.
we are really looking for someone who is strong in Security Operations (Vulnerability Management, Penetration Testing, Incident Response, Identity Access Management, etc.). A few of the candidates were strong in Risk Management (Risk Assessment, Data Classification, Audits, etc.) but we already have those skills on our team. The remaining candidates mostly struggled to answer basic technical questions relating to security and seemed to mostly come from more IT Operations backgrounds. We are looking for an experienced person as this is not an entry level opening.
General things to consider when screening:
Experience with vulnerability management is key for this position.
Experience with application penetration is key for this position.
Experience with Dev SecOps/Secure Software Development Lifecycle (Secure SDLC/SSDLC)/Secure by Design is key for this position.
Scripting and automation experience is highly desired for this position.
Interpersonal skills and being able to talk with and manage stakeholders are key for this position.
Regards,
Deva
iBrain Technologies, INC. | A Certified Minority Business Enterprise
Email:
Phone Direct:
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.