Security Analyst at Geographic Solutions, Inc.

Title: Security Analyst
Company: Geographic Solutions, Inc.

Job Summary: The Security Analyst will be responsible for identifying and reporting all security issues, prioritizing threats, and confirming threats have been mitigated in accordance with company standards. You will also be training other developers on security best practices, and performing code reviews.


Key skills:

Proficiency in configuration, optimization, and utilization of information security tools such as Qualys HP Fortify, Nessus, Kismet, Airsnort, NMAP, Ethereal, WebInspect, SNORT, Security Onion, McAfee NSM/ePO/ENS, and Nikto, and manual techniques to exploit vulnerabilities in the Open Web Application Security Project (OWASP) top 10 including but not limited to cross-site scripting, SQL injections, session hi-jacking and buffer overflows to obtain controlled access to target systems.
Attack and Penetration experience in testing of Internet infrastructure and Web-based applications utilizing manual and automated tools.
Proficiency in static and dynamic scanning methodologies.
Ability to perform network traffic forensic analysis, utilizing packet capturing software, to isolate malicious network behavior, inappropriate network use or identification of insecure network protocols.
Ability to perform general inspection and implement preventative measures on intrusion detection systems.
3 – 4 years hands on experience in one or more of the following Operating Systems: Windows Server 2012/2016/ Linux and UNIX.
3 – 4 years practical experience in TCP/IP Networking.

Preferred Skills:

3 – 4 years of experience in one or more of the following Database Environments: Microsoft SQL Server, Oracle, Sybase, DB2 and MySQL.
3 – 4 years of experience in McAfee Technology Stack (IPS, ePO, NSM, Solidcore, DLP, and Web Proxy)
Knowledge of Industry Standards, e.g., ISO 17799/27001, FedRAMP, FISMA, and NIST Publications and other Industry Related Security Standards.
Knowledge of Industry Regulations and Laws, e.g., Gramm-Leach-Bliley Act (GLBA), GDPR, HIPAA, Payment Card Industry (PCI) or Corporate Compliance.
Active participation in Enterprise level Risk Assessment and Business Impact Analysis.
Active participation in disaster recovery and business continuity planning and execution.
Consulting experience in Information Security.

Hours: Day shift. Evening and weekend hours may be required.

See full details and apply at