Govt: Sr IT Security Engineer (Penetration Tester / Analyst) (Nessus, OWASP 10, burpsuit) Prefer USC

Nessus
Contract W2, Contract Independent
Depends on Experience
Travel not required

Job Description

Sr IT Security Webapp Testing (NESSUS, SQL, Kali, SQL/ mysql, NIST compliance, Webinspect /Appscan) - NO c2c or Third Party - sorry no visa sponsor at this time, due to govt position

Hello, (No CPTs please and we strongly encourage ====s to apply. )
 
I would like to share the following position with you. Please review the description and submit your update word copy of resume along with expected w2 and location option. Thank you,
 
Location: Washington, DC - (Candidate must be able to relocate & committed - No relocation expenses will be provided)
Duration: long term (5 plus years)
Visa: Preferences ====s but anyone matching qualifications can apply.
Interview: Phone & Inperson - Prefer local
Rates w2/1099: Please highlight your expectations
 
Candidate must have 8 years in IT and 5plus years in Security
We are looking for Web Application Pen Testers with some of the experience listed below. Essentially, we need good Webapp Testers & Assessor who can review the code and advice how to fix it. Client prefer more manual skills then Automation.
Must have experience working in environments that leverage virtualization, Web app firewalls, content delivery networks, and dynamically generated code. Ability to read source code (java, php and javascript primarily), Web application penetration testing (should be very familiar with the owasp top 10), Experience with HP Fortify, Nmap, Nessus, WebInspect, w3af, AppDetective, Burp Suite and similar tools. Able to determine short term mitigation (Waf rules, signatures, etc ) and long term remediation to based on the issue and tools available. Able to clearly communicate findings from automated tools and manual testing. Understanding the basic principles of agile development would be helpful.
Candidate must have good experience with Network, ports and switches as far as security concerns.
 
Certification: Must have one of the security related Cert like CEH, Security +, CAP, GPEN, CISSP or Similar

Posted By

Roberta Richardson

9720 Capital Ct, Ste 301 Manassas, VA, 20110

Contact
Dice Id : 90907789
Position Id : 597947
Originally Posted : 4 years ago
Have a Job? Post it

Similar Positions

Senior Security Engineer
  • Lumen Solutions Inc
  • Washington D.c., DC
Application Security Engineer
  • MDMS Recruiting
  • Mclean, VA
Cyber Security Engineer
  • Base One Technologies
  • Alexandria, VA
Vulnerability Management Analyst
  • CyberData Technologies
  • Rockville, MD
Senior Cyber Security Threat Intelligence Analyst
  • Bering Straits Native Corporation
  • Washington, DC
Cybersecurity Engineer II
  • ShorePoint, Inc
  • Arlington, VA