Oath: logo
Paranoids Vulnerability Analyst - Oath: Dulles, VA, United States Bookmark Share Print 578 1 17

Listing Description

Oath, a subsidiary of Verizon, is a values-led company committed to building brands people love. We reach over one billion people around the world with a dynamic house of 50+ media and technology brands. A global leader in digital and mobile, Oath is shaping the future of media.

When you impact millions of people every day, you become a large target for adversaries in all layers of the stack. Our job is to keep our users safe and make Oath one of the safest places on the Internet.

We are the information security team at Oath. People call us "The Paranoids".

For 30 years we have been at the leading edge of technology and we don't plan on slowing down. From building our own award winning data centers, to building our own private cloud, and now moving to the public cloud, we want motivated, intelligent, hands on innovators who love to try something new. Now that AOL and Yahoo have merged to form Oath, we have even more to do. With the world's largest technology playground at our fingertips, we invite you to come play along.The Analyst will perform technical security engineering activities including the following:

Perform vulnerability scans, analysis, validation and remediation activities.

Perform network and application penetration testing.

Classify and prioritize the risk of new vulnerabilities according to the specifics of Oath environment's risk level, mitigating factors, and assessment of the impacts of internal and external threats.

Engineer application, system and network security solutions to meet security requirements for varied operating environments.

Research and assess new threats, vulnerability security trends and security alerts, recommend remedial action.

Work with customers to oversee remediation of identified security issues.

Perform technical and non-technical compliance activities.

Provide security subject matter expertise to Oath product teams including developers and system administrators.

Perform security validation for configuration settings on different systems.

Minimum Qualifications:

Bachelor’s degree with a minimum of 3 years of information security work experience.

A strong interest in the field of information security.

Strong scripting, system administration or software engineering background (e.g. Python, Ruby, Javascript, Perl, or Java).

Fluent in a variety of web application protocols, operating systems and networking technologies.

Strong Understanding of common network vulnerabilities, OS vulnerabilities (Linux, Windows and OSX), patching and attack patterns.

Strong analytical, problem solving and engineering skills.

Good written and verbal communication skills.

Solid organizational skills and strong customer service skills.

Experience with parsing / analysis of large data sets (e.g. vulnerability scan results).

Desired Qualifications:

Certified Information Systems Security Professional (CISSP).

Expertise with OWASP/NIST security concepts and common application security risks, such as XSS, XSRF, SQL Injection, Cookie Manipulation among others.

Familiarity with Enterprise Vulnerability Management tools such as Rapid 7 Nexpose, Nessus and Qualys.

Familiarity with Amazon Web Services (AWS) security.


Listing Details

  • Citizenship: No Requirements
  • Incentives: Both

 

  • Education: Bachelors Degree
  • Travel: No Travel
  • Telework: No Telecommute



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765