Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Cyber Security Vulnerability Analyst

Expired Job

Suntrust Banks Atlanta , GA 30301

Posted 3 months ago

Job Description: :

Job Description

The ideal candidate will have strong data analysis skills and be capable of utilizing, MS Access, Excel and SQL to perform said analysis. The candidate will also have a basic understanding of the NIST family of security controls and basic principles of system cyber security.

The Information Security Analyst will be part of a team supporting penetration testing activities and documentation work. The Information Security Analyst will be responsible for a variety of tasks including but not limited to:

Assisting in the maintenance of a vulnerability management process,

Penetration testing and audit readiness testing,

Vulnerability Management & Patching,

Generating Vulnerability Management & Patching reports with all relevant actions and information,

Assisting in the management of InfoSec Programs,

Analyzing vulnerabilities, and other findings,

Providing administrative support,

Researching and authoring policies and procedural documents, and

Participating in peer review of deliverables.

The Information Security Analyst will primarily need Knowledge in tools like Nessus and Nexpose and Burp Suite and Kali Linux other network and application scanning tools and other security assessment tools, audit tools, and vulnerability scan tools. The analyst will work closely with team members, managers, system owners, information security officers and other customers.

Additionally, the Information Security Analyst will assist in supporting other security program functions such as audit efforts, quality control, continuous monitoring, risk management and responding to ad hoc data calls. The ideal candidate will possess a solid technical and writing background with a desire to learn and be involved in the establishing and maturing an Agency-wide information security program.

Qualifications

Basic Qualifications:

  • One or more years' working experience in a technology environment with exposure to information security principles.

  • Working knowledge of common IT and security concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques, cyber incident response, malware analysis, computer forensics and the tools that support these processes.

  • Ability to analyze solutions using deductive reasoning and critical thinking to solve problems in straightforward situations.

  • Demonstrated teamwork and collaboration skills.

  • Strong time management skills and ability to manage competing priorities effectively.

  • Effective verbal and written communication skills for the purpose of providing detailed information about event timelines, technical designs, system concepts and business impact.

  • Ability to obtain requisite technical certification(s) within six months of hire.

Desired/But Not Required Tool Experience

  • Tenable Nessus Vulnerability Scanner

  • Nexpose Vulnerability Scanner

  • Burp Suite Vulnerability Scanner

  • Kali Linux and tools

  • Security Content Automation Protocol (SCAP)

  • Symantec Endpoint

  • Demonstrate skillsets and experience in addressing vulnerabilities in : Microsoft Windows Client/SQL/Server, RedHat, SSL, VMWare, SSH, SNMP

  • Other network and application scanning tools.

Preferred Qualifications:

  • Experience working with National Institute of Standards and Technology (NIST) guidelines.

  • Experience applying, analyzing and assessing information systems and security controls (NIST SP 800-53, Rev 4).

  • Understanding of attack vectors and methodologies.

  • Knowledge of and experience with applying Common Weakness Enumeration (CWE) and Common Vulnerability Scoring System (CVSS).

  • Experience working with perimeter technologies (e.g., firewalls, proxies, NIDS) and vulnerability management tools.

  • Interest in learning the concepts of business development and capturing new business

  • SANS, Security+, CASP or equivalent security certification

  • Experience with vulnerability management, patch management and configuration management best practices.

Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national origin

To review the EEO Poster, copy and paste the following link into your browser: http://www1.eeoc.gov/employers/upload/eeoc_self_print_poster.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf

Apply Now >> Refer a Friend

Link for schema


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Security Vulnerability Management

Leconte Recruiting Firm

Posted 1 week ago

VIEW JOBS 11/1/2018 10:31:23 PM 2019-01-30T22:31 <p> </p> <p>Performs assessments of application, systems and networks to identify security vulnerabilities caused by gaps or failures in the patching, hardening/configuration or software development <gwmw class="ginger-module-highlighter-mistake-anim ginger-module-highlighter-mistake-type-1" id="gwmw-15396168156720942987507">lifecycle</gwmw> (SDLC). Monitors and reports results to stakeholders and management as well as measures the effectiveness of remediation against internal policies and external compliance.  Consults with customers to understand the impact of vulnerabilities <gwmw class="ginger-module-highlighter-mistake-anim ginger-module-highlighter-mistake-type-3" id="gwmw-15396168169544168004076">on</gwmw> their systems and provides support for audits as needed.  Responsible for maintaining vulnerability technologies and ensuring that the expected breadth and depth of coverage is appropriate to meet policy and compliance expectations<gwmw class="ginger-module-highlighter-mistake-type-3" id="gwmw-15396168182844219534429">.</gwmw></p> ​​​​​​​​​​​​​​​​​​​​​​​​​​​ <p> </p> <ul> <li>Skills / Knowledge - Developing professional expertise, applies company policies and procedures to resolve a variety of issues.</li> <li>Job Complexity - Works on problems of moderate scope where analysis of situations or data requires a review of a variety of factors. Exercises judgment within defined procedures and practices to determine appropriate action. Builds productive internal/external working relationships.</li> <li>Supervision - Normally receives general instructions on routine work, detailed instructions on new projects or assignments.</li> <li>Risk Assessment - Ability to identify, communicate, and mitigate risk within technical solution designs</li> <li>Industry Knowledge - Continued self-education of new and emerging threats and relevant processes, controls, or technologies to mitigate them.</li> <li>Incident Response - Knowledge and skills to contribute to all phases of Incident Response<gwmw class="ginger-module-highlighter-mistake-anim ginger-module-highlighter-mistake-type-3" id="gwmw-15396168843516129349999">.</gwmw></li> </ul> Requirements: <ul> <li>Bachelor's Degree</li> <li>Relevant Experience or Degree in: Bachelor's degree in Computer Science, Info Security,</li> <li>Typically Minimum 2 Years Relevant Exp</li> <li>Including network operations or engineering or system administration on Unix, Linux, MAC<gwmw class="ginger-module-highlighter-mistake-anim ginger-module-highlighter-mistake-type-3" id="gwmw-15396169145936265520866">(</gwmw>Message Authentication Code), or Windows; common security operations, intrusion detection systems, Security Incident Even Management systems, Penetration Testing, Web Application assessment, Secure Coding practices.</li> </ul> <br />   Leconte Recruiting Firm Atlanta GA

Cyber Security Vulnerability Analyst

Expired Job

Suntrust Banks