Application Security Analyst (Remote)

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

Overview

As a Security Analyst, you will be a reliable team member that leverages your knowledge, skills, and experience to assist with delivering exceptional results to clients for the Practice’s core professional service offerings, as well as embarking on a long-term journey to hone your skills and mature your career as the company grows. Your primary responsibilities revolve around assisting with challenging and complex assessments, sharing knowledge with team members, and continuously improving your knowledge and skills to take on more advanced projects over time. Security Analysts are encouraged to interact with the Practice Leadership Team and contribute to future success. GuidePoint Security’s assessment offerings are perpetually evolving in response to emerging threats and diverse client needs. Your creativity and expertise will assist the Practice by adapting to this rapidly changing environment.

Role and Responsibilities

• Assist in the delivery of professional services, including but not limited to Application Security Assessments, Vulnerability Assessments, Internal and External Penetration Tests, Wireless Security Assessments, and/or Remote Social Engineering, and a variety of Custom Assessments
• Contribute to comprehensive assessment deliverables that are proficiently tailored to both technical and managerial audiences and fully detail the technical execution, core deficiencies, business impact, and realistic remediation strategies
• Utilize automation, orchestration, and scripting to reduce manual processes, improving overall efficiency while also enabling new capabilities to meet the rapidly changing needs of our clients
• Contribute to marketing initiatives via activities such as publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools
• Perpetually strengthen relevant skills, knowledge, and abilities to stay at the forefront of the information security industry
• Foster client relationships by providing support, information, and guidance
• Configure, operate, and manage automated penetration testing platform and report results to relevant stakeholders in a timely manner
• Maintain a strong desire to learn, adapt, and improve along with a rapidly-growing company
• Perform other duties as assigned

Experience and Education

• InfoSec community involvement, such as conference speaking, blog/whitepaper authoring, and podcast speaking/producing experience, is strongly preferred.
• Experience performing offensive/attack-oriented security assessments is strongly preferred.
• Internal operational experience is preferred.
• Relevant security certifications, such as eJPT, GPEN, and OSCP are preferred.
• Experience with enterprise assessment platforms like, Vulnerability Scanners, Pentest Automation, and Breach and Attack Simulation (BAS) platforms are a plus, but not required.

Why GuidePoint?