Security Analyst
Remote
PingWind
Position Description: The successful candidate will collaborate with other security team members and client personnel to conduct security analysis for vulnerabilities reported to the client from around the world. You will determine vulnerable products and assign a severity score to those products based on industry specifications. The security analysis data will be used by tens if not hundreds of millions of customers. Primary Responsibilities: · Conduct security analysis and scoring of Common Vulnerabilities and Exposures (CVE) utilizing the Common Vulnerability Scoring System (CVSS) framework· Create, update and maintain Security Technical Implementation Guides (STIGs) for the National Checklist Program (NCP)· Implement the use of Security Content Automation Protocol (SCAP) for the NCP· Serve as a point of contact for the NCP· Develop use cases, test cases, and requirements documentation for various functional business areas· Assist with functionality testing of internal NVD applications and the external NVD website· Review and provide comments on official NIST documentation· Conduct Research and Development activities for NIST Required Qualifications: · 5+ years of experience· Experience with vulnerability analysis, assessments and remediation management· Strong understanding of enterprise technologies, architectures, operations and protocols, and willingness to learn new technologies· Understanding of industry standards such as CVE, CPE and CVSS· Ability to articulate vulnerabilities and remediation to varied audience· Experience with data analysis, automation and black box testing Desired Qualifications: · Security+ certification About PingWind PingWind is focused on delivering outstanding services to the federal government. We have extensive experience in the fields of cybersecurity, development, IT infrastructure, supply chain management and other professional services such as system design and continuous improvement. PingWind is a VA CVE certified Service-Disabled Veteran-Owned Small Business (SDVOSB) with offices in Washington DC and Northern Virginia. www.PingWind.com Our benefits include:Paid Federal HolidaysRobust Health & Dental Insurance Options401k with matchingPaid vacation and sick leaveContinuing education assistanceShort Term / Long Term Disability & Life InsuranceEmployee Assistance Program through Sun Life Financial EAP Guidance Resources Veterans are encouraged to apply PingWind, Inc. does not discriminate in employment opportunities, terms, and conditions of employment, or practices on the basis of race, age, gender, religious or political beliefs, national origin or heritage, disability, sexual orientation, or any characteristic protected by law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Black box CVSS IT infrastructure NIST SCAP Security analysis STIGs Vulnerabilities
Perks/benefits: Career development Health care Insurance
Region:
Remote/Anywhere
Job stats:
75
25
0
Category:
Analyst Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs