Job ID: 2401061
Location: REMOTE WORK, VA, US
Date Posted: 2024-01-25
Category: Cyber
Subcategory: Cybersecurity Ops
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: Public Trust
Potential for Remote Work: No
Description
Overview:
We are seeking a motivated, career and customer-oriented Web Application Security Assessment (WASA) Analyst interested in joining our Cyber Security Operations Center (CSOC) team in support of the Department of Veterans Affairs (VA).
Responsibilities:
· Perform Security Assessments against Web Applications for vulnerabilities, security misconfigurations, and compliance-related concerns.
· Utilize a variety of industry standard security tools to conduct manual-based Security Assessments.
· Utilize a variety of industry standard security tools to conduct automated scans against Web Applications.
· Review new vulnerabilities as they are published and develop impact assessments.
· Read and test code as related to APIs.
· Determine risk from vulnerabilities based on availability of exploit and potential loss of information and IT services capabilities.
· Produce periodic trending and impact reports.
· Develop new testing programs in support of WASA testing.
· Manage and perform maintenance of backend system softwareManage and maintain Government owned virtual platforms (VM), operating systems, and applications.
· Manage and maintain Government owned or provided virtual environments, operating systems, and applications.
Qualifications
Required Education and Experience:
- Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, Criminology, or similarly relevant field.
- 5+ years of experience
· A successful candidate will have demonstrated expert level experience (5+ years) and knowledge with multiple of the following:
o Support Windows, Unix, and Linux operating systems
o Virtualized Systems
o Automated Web Scanning Tools (DAST)
o Burp Proxy Suite
o Burp Enterprise
o Kali Linux Suite
o Nessus Scanner
o NMAP
o Database Management Systems; SQL, Oracle, Mongo, MySQL
o Web languages and technologies; including but not limited to PHP, Python, JavaScript, Java, Ruby, PERL, ASP, .NET, HTML, CSS, Web API;s, Rust, Web Services
- Candidate must have professional level experience in the following Database Management Systems: SQL, Oracle, Mongo, MySQL
- Candidate must possess professional level experience in the following Web languages and technologies including: PHP, Python, JavaScript, Java, Ruby, PERL, ASP, .NET, HTML, CSS, Web API’s, Rust, Web Services
· Preference given to candidate who possess one of the following certifications:
o C|EH
o PenTest+
Target salary range: $100,001 - $125,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.