Cybersecurity Vulnerability Analyst Job at Peraton, Linthicum, MD

VHJlQ1pkd3dDYk9abVE3ZU9NRW9Zd1E1aFE9PQ==
  • Peraton
  • Linthicum, MD

Job Description

Program Overview

About The Role

This Cybersecurity Vulnerability Analyst supports the Vulnerability Disclosure Program (VDP) within the Defense Cyber Crime Center (DC3) and is responsible for reviewing and vetting security vulnerability reports submitted to the DoD VDP from outside hackers. The Analyst will evaluate the reports to ensure the vulnerability is reproducible and therefore valuable to the customer. They will assess each vulnerability for severity and assign an associated risk statement. The HackerOne Triage console tool will be utilized to assist in assigning and prioritizing reports. It will also assist the Analyst in helping identify duplicate submissions. Valid reports will be written in a DOD approved format and sent to the Vulnerability Management Analyst team for system owner coordination and mitigation. The Vulnerability Analyst will be a VDP liaison with the hacker community.  

The Vulnerability Analyst will also:

  • Utilize offensive toolsets such as Kali Linux to safely analyze production networks and systems, documenting steps and procedures to produce usable vulnerability assessments for the customer.
  • Identify and investigate vulnerabilities, asses exploit potential, and document findings and remedies for presentation to facilitate mitigations on customer systems. 
  • Conduct web application vulnerability assessment testing using both automated tools and manual web exploitation techniques, using tools such as Burp Suite and open-source toolsets. 
  • Utilize a variety of industry standard security tools to conduct automated scans against systems and applications. 
  • Develop and execute proof-of-concept exploits to demonstrate the real-world impact of identified vulnerabilities, utilizing various web exploitation methods. 

Qualifications

Qualifications

  • Minimum Bachelor’s degree and 5+ years of experience; OR Master’s Degree and 3+ years of experience; OR 0 years with PhD. Bachelor's degree must be one of the following fields: Information Technology, Cybersecurity, Computer Science, Information Systems, Data Science, or Software Engineering.

  • Strong understanding of information security principles and practices,  

  • Understand basic IDS/IPS rules to identify and prevent malicious activity,  

  • Utilize MITRE ATT&CK, CVSS, and NIST frameworks to assess vulnerability severity and risk impact. 

  • Basic understanding of web exploitation concepts and techniques. 

  • Knowledge and understanding of the Open Web Application Security Project (OWASP) top 10. 

  • Experience operating in a professional IT or cybersecurity environment.   

  • Experience investigating security events, threats and/or vulnerabilities.  

  • Understand information security principles, technologies and practices.  

  • Excellent customer service skills.

  • IAT Level II certification required. 

  • Active Secret security clearance required.

Preferred Additional Skills

  • CEH, CCNA-Security, CySA+, GCIH, GICSP, PenTest+ or similar certification a plus.

SCA / Union / Intern Rate or Range

Details

Target Salary Range: $80,000 - $128,000. This represents the typical salary range for this position based on experience and other factors.

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.

Job Tags

Internship,

Similar Jobs

HCA Healthcare

Emergency Management Specialist Job at HCA Healthcare

**Description****Introduction**Do you have the career opportunities as a(an) Emergency Management Specialist you want with your current employer? We have an exciting opportunity for you to join Alaska Regional Hospital which is part of the nation's leading provider of... 

SelfHacked

Wordpress Developer Part Time Job at SelfHacked

 ...We are looking for a talented WordPress developer. Pay will be in accordance with abilities and experience. Position is remote Required Duties & Skills: Writing...  ...At least 3 Years of experience with web development in WordPress Experience with... 

Chipton‑Ross Inc

215011 - Warehouse Shipping and Receiving Specialist Job at Chipton‑Ross Inc

 ...Chipton-Ross is seeking aWarehouse Shipping and Receiving Specialist for a contract opportunity in Wauwatosa, WI. BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE): High school diploma / GED, ability to read English and perform basic math skills. 3 - 5 years' experience... 

Music Ministry International

Protestant Contemporary Worship Music Director Job at Music Ministry International

 ...The successful candidate for this position will be a 1099 music director with Music Ministry International and be responsible for the...  ...instrument abilities. He or she shall have the ability to direct, produce, and arrange as needed. 1.9.3.3 The Music director must be... 

Gpac

Warehouse Shipping Associate Job at Gpac

 ...identity, marital status, military status, genetic information, or any other status protected by applicable laws or regulations. GPAC (Growing People and Companies) is an award-winning search firm specializing in placing quality professionals within multiple industries...