Search Jobs

Jr Security & Pen Tester Engineer

We’re looking for a Jr Security Engineer to maintain, optimize and improve the corporate security posture of one of our clients. The role requires a detail-oriented person and someone who is a quick learning. The ideal candidate will be proactive and self-driven. If you’re looking for a role that you can learn and grow in, read on.

Responsibilities:

  • Identify, respond to, and investigate malicious or anomalous activity based on event data from SIEM, firewalls, IPS, and other sources
  • Utilize vulnerability management tools to run automated, ad-hoc, application scans, to assess and mitigate vulnerabilities to ensure compliance with applicable corporate policies and requirements
  • Perform regular health and integrity checks of security systems to ensure proper function and monitoring
  • Identify, resolve, and mitigate vulnerabilities in other departments and teams’ systems, applications, or code
  • Perform quarterly internal penetration tests (NIST SP 800-15 guidelines) and vulnerability scans
  • Stay up-to-date with trends in the information security community including new vulnerabilities, methodologies, and products
  • Assist with coordination of annual external penetration testing performed by 3rd party service provider as well as quarterly attestation of vulnerability scans by ASV
  • Participate in the incident response team
  • Assist with vendor security questionnaires
  • Conduct security impact analysis on proposed systems
  • Provide tuning recommendations of security tools based on traffic patterns
  • Create/maintain documentation and procedures for accountable systems
  • Produce and review weekly/monthly metrics for security events

Requirements:

  • Bachelor of Science in Information Technology OR equivalent experience
  • Current security certifications (CISSP, CEH, Security+, CCNA: Security, etc.) are highly desirable
  • Equal fluency in Windows, Linux operating system administration skills, and Microsoft office suite 
  • 2+ years’ experience with SIEM, firewalls, and IPS
  • 2+ years’ experience with security tools and appliances such as Nessus, IPS/IDS, Kali Linux, Qualys, and SIEMs Strong written and verbal communication skills
  • Deep understanding of various standards, frameworks, and benchmarks such as CIS, NIST, CVSS, OSWAP, and PCI/DSS
  • Skilled at problem-solving and analytical thinking
  • Proven time management skills
  • Effective team player with the ability to communicate with different levels of technical and non-technical members

 

Apply for this job