Activez les alertes d’offres d’emploi par e-mail !

Cyber Security Analyst

Ampcus, Inc

Chantilly

Sur place

EUR 50 000 - 90 000

Plein temps

Il y a 30+ jours

Résumé du poste

An innovative firm in the cybersecurity sector is seeking a Cybersecurity Specialist to join their team in Chantilly. This role involves conducting penetration tests, analyzing vulnerabilities, and developing security strategies to protect against cyber threats. You'll leverage your expertise in tools like Metasploit and Burp Suite while working in a collaborative environment. If you have a passion for cybersecurity and a knack for problem-solving, this position offers an exciting opportunity to make a significant impact in safeguarding digital assets and enhancing security protocols.

Qualifications

  • 4-5 years of experience in cybersecurity with a focus on penetration testing.
  • Proficient in exploiting web application vulnerabilities like XSS and SQLi.
  • Strong understanding of networking, TCP/IP, and cloud architecture.

Responsabilités

  • Conduct penetration testing and vulnerability assessments on systems.
  • Analyze vulnerabilities and provide clear reporting with mitigation strategies.
  • Train team members on security concepts and tools.

Connaissances

Penetration Testing
Vulnerability Assessment
Network Security
AWS
Burp Suite
Metasploit
Communication Skills
Windows OS
Linux OS
Scripting

Formation

Bachelor's Degree in Cybersecurity
Certifications (CEH, OSCP)

Outils

Nessus
Burp Suite
Metasploit
Kali Linux

Description du poste

Ampcus Cyber Inc, a leading global pioneer in Cybersecurity committed to securing businesses against evolving cyber threats, headquartered in Chantilly, VA is looking for a Cybersecurity Specialist to join our Team working from our Corporate Chantilly office.



Job Responsibilities:

  • Perform recon on applications and networks

  • Perform penetration testing and system exploitation against desktops, servers, applications, operating systems, and security systems to gain root and administrator access for highly specialized network systems

  • Perform internal and external pentest against systems to determine vulnerabilities and offer mitigation strategies

  • Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation against information systems

  • Analyze vulnerabilities, delivering clear and coherent written reporting, identifying network risks, and providing mitigation recommendations

  • Conduct penetration and malicious user testing in Cloud environments, including Amazon Web Services (AWS), Azure, and on-premise systems

  • Translate systems and applications into security test plans, performing hands-on security testing and leveraging adversarial tactics

  • Must be able to use at least two of the following proficiently and instruct others on them: Nessus, Burp, Metasploit, and the Social Engineering Toolkit.

  • Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption

  • Ability to assist with researching and evaluating security policies and guidance

  • Ability to train other team members on security concepts

  • Excellent communication skills


Required Skills

  • 4-5 years of experience in related field

  • Demonstrated real-world experience performing grey and black box penetration testing.

  • Must be proficient in exploiting common web application vulnerabilities like XSS, CSRF, Command Injection, SQLi, single sign-on bypass, etc.

  • Must be proficient in any of the following: PowerShell Empire, Metasploit Framework, Cobalt Strike, Burp Suite, Canvas, Kali Linux, A/V evasion methodologies, Exploit Dev.

  • Must have solid working experience and knowledge of Windows operating systems (incl. Active Directory), Linux operating systems; VMware ESXi or similar; mobile platforms are a plus.

  • Solid understanding of networking, TCP/IP, virtualization and cloud architecture.

  • Strong familiarity with some of the following: OWASP top 10, DoD and NSA Vulnerability and Penetration Testing Standards.

  • Knowledge of exploitation concepts including phishing and social engineering tactics, buffer overflows, fuzzing, SQLi, MiTM, covert channels, secure tunneling and open-source exfiltration techniques.

  • Experience with Linux, Windows, wireless, and virtual platforms

  • Knowledge of information security policies and guidance

  • Proactive interest in emerging technologies and techniques related to penetration testing


Preferred Skills and Qualifications

  • Experience with IOT device is a plus

  • Certifications such as CEH or OSCP

  • Malware analysis or digital computer forensics experience is a plus

  • Scripting (Windows/*nix), Bash, Python, Perl or Ruby, Systems Programming is a plus



Obtenez votre examen gratuit et confidentiel de votre CV.
ou faites glisser et déposez un fichier PDF, DOC, DOCX, ODT ou PAGES jusqu’à 5 Mo.
TrustpilotImage showing a rating of 4.5 out of 5 stars on Trustpilot for JobLeads, indicating a high level of customer satisfaction.
Noté « Excellent » sur la base de 17 140 évaluations
Suivez-nous
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Entreprise
Services
Ressources gratuites
Assistance

© JobLeads 2007 - 2025 | Tous droits réservés