Job Description

Job Title: Cyber Security Analyst II
Job Location: Virginia


  • Conduct platform or operating system vulnerability scans which assess exposure of system to attacks or hacking
  • Respond to questions and issues raised regarding viral activity, spam/phishing etc.
  • Produce reports
  • Serve as organization's Point of Contact for the third party certification of security procedures and use of cyber security protections
  • Ensure that system's security controls, policies and procedures examined, measured and validated against third party standards
  • Design, plan, and implement test strategies to support the core infrastructure in the contingency environment for all critical business applications to ensure business continuity in the event of a major business interruption or disaster
  • Participate in internal reviews by auditors, operational risk assessment staff, or compliance/reporting staff to prepare assessments or reports of operational risks associated with IT/IS infrastructure, access to systems, exposure to attacks, etc.
  • Participate in developing and testing of new methodologies and systems for recovery of the critical core business processes and the enterprise infrastructure
  • Review commercial products available to enhance corporate hardware, platforms, applications and data
  • Test or evaluate products under consideration for purchase or licensing

Required Qualifications:

  • Bachelor's degree or equivalent
  • Two+ years of related experience
  • Demonstrable knowledge of application security, risk assessment, validation of security penetration/dynamic test results, static code testing/scanning/analysis, and vulnerability resolution
  • Experience with secure coding practices and is capable of conducting security assessments and analysis of applications in order to find vulnerabilities through manual and automated code scanning techniques
  • Ability to identify security requirements for applications and services and to effectively discuss requirements with internal teams and business owners
  • Can explain the risks associated with common application vulnerabilities in order to demonstrate exploitation and then recommend mitigation options
  • Take initiative to promote activities to foster Information Security awareness and education among application development
  • Strong interpersonal and communication skills for developing relationships with individuals and teams across the enterprise (including senior management)
  • Familiarity with emerging applications security exploits and willingness to research them
  • Solid understanding of frequently used web application security testing tools and common web/systems application vulnerabilities
  • Familiarity with key security concepts and frameworks, such as OWASP, CVE, and CVSS
  • Thorough understanding of application architecture and supporting component
  • Solid developers with three+ years of experience with development stack like Java, database who are interested in getting trained in Application security are welcome to the team

QBH#: 2102

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online