Job Role: Security Analyst
Location : Malvern,PA.( Hybrid onsite )
No OPT.
Responsibilities:
Provide vulnerability management and secure configuration baseline management oversight and governance programs. Adjudicate risk-acceptance ("exception") requests and false positive requests, review metrics, shape and govern based on trends being presented Qualifications:
- Looking for strong AWS experience and security experience - Vulnerability Management, Security Assurance, Cloud Security Engineering, or DevSecOps
- Working knowledge of security risk oversight, CVSS (Common Vulnerability Scoring System), CVE (Common Vulnerabilities and Exposures), and technical security vulnerability remediation/mitigation
- Practical experience analyzing cloud infrastructure vulnerability data to understand and communicate risks, concerns and outcomes of decisions
- Extensive experience working with AWS EC2s (or Azure VMs), as well as Container (Kubernetes / EKS) and image security scanning
- Preferred knowledge of cloud infrastructure hardening such as validating EC2 Operating Systems against CIS benchmarks, or detecting security misconfigurations with EKS deployments
- Security Certifications preferred