IT Cyber Penetration Testing Analyst

  • Next Gen Cyber LLC
  • Baltimore, MD, United States
  • Apr 29, 2018
Full time Risk Management Technology R&D Test and Evaluation Systems Development Knowledge Management Training, Education, and Awareness

Job Description

General Description of Duties:

  • Perform security risk assessment, threat analysis and threat modeling
  • Plan /Design/Execute security related artifacts and activities
  • Write Security Test strategy, Test Cases, Remediation Plan, and Security Test Report
  • Conduct Dynamic Security Scans, Manual validations/Pen Testing, and other Security QA activates
  • Conduct Remediation Strategy Discussions and User Review Sessions
  • Lead/Participate projects/defects related meetings and triage activities
  • Lead and Execute efforts with Web Inspect, Burp Suite Pro, Wireshark and other security QA tools as appropriate
  • Lead/Participate in developing Security QA roadmap, adopt security best practices, and Implement new ideas and innovations according to the industry trends
  • Create and maintain False Positive Repository Database
  • Testing Web Application Security and understanding of vulnerabilities from front end, backend, database and Network/Infrastructure
  • Cross the line of the Web Application Security Testing and participate in Mobile, Network, Perimeter, WIFI and other security functions as needed
  • Lead/Perform Red Team and Blue Team exercises
  • Wear Black hat hackers hat as required and perform invasive security testing
  • Participate Pen Testing and Ethical hacking activities on identified tasks
  • Perform API (Web Services) security Testing (Restful, SOAP)
  • Adhere to the QA best practices and work for delivering Secured and Quality products                  
  • Good understanding of business process, systems knowledge
  • Good understanding of QA Methodology, Policy, Process, Tools
  • Excellent communication skills and the ability to interface with more senior co-workers and leadership with confidence and clarity
  • Support the Security QA manager in Security QA activities and be a Team Player


  • Active Q Clearance
  • 3 years of experience
  • Bachelor’s Degree in Computer Science or related field; Master’s Degree Preferred
  • Certified Information Systems Security Professional (CISSP) and/or Certified Information Systems Auditor (CISA)
  • certification are highly desirable.

Find out more details @