Cyber Security Analyst

We, Green Tick Nepal Pvt. Ltd., a management consulting organization located in Minbhavan, Kathmandu, with profound knowledge and experiences in consulting, business advisory, training and business process outsourcing services are looking for a suitable candidate for the vacant position of Cyber Security Analyst. The candidates who meet the following criteria will be shortlisted for an interview.

JOB CRITERIA:

• Should possess a Bachelors degree in Engineering, IT, Computer Science, Computer Application or equivalent. Masters in Engineering will be an added advantage;
• Should have CEH certification;
• Should have a minimum of 2 years of experience in Application security testing both Web and Mobile and Network security testing;
• Should possess knowledge of at least one strong security testing methodology OWASP, OSTTM, SANS TOP 25.
• Should possess good knowledge of various scripting languages such as Python, Perl, Powershell, Bash etc.;
• Should have good hands on experience on Nessus, Burp Suite, Kali, Metasploit and Wireshark;
• Should be experienced in manual and automated VA/PT assessment experience;
• Should have experience in Application Security Testing tools like Appscan, acunetix, webinspect etc.;
• Should have experience in penetration testing of network devices, servers, systems, databases and applications that are web-based, server-based and virtual and mobile app;
• Should possess a good understanding of the Vulnerability analysis and false positive removal;
• Should have hands on experience manual testing and validation of the vulnerabilities;

DUTIES AND RESPONSIBILITIES:

• Perform VA/PT assessment of web and android based application, network, OS, DB, Firewall, Routers, Switches and prepare report understandable to the common user;
• Understand the level of threat and provide practical and reasonable recommendations based upon sound risk management principles;
• Compile the findings (Assurance Review Report (ARR)) and discuss the findings with application team, IT Support and IT Security;
• Responsible for ensuring that the company's digital assets are protected from unauthorized access;
• Responsible for keeping the company's security systems up to date and creating documentation and planning for all security-related information, including incident response and disaster recovery plans;
• Conduct security assessments through vulnerability testing and risk analysis;
• Keep track of new vulnerabilities on various network and security devices for different vendors;
• Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding, network security, and encryption;
• Maintain assigned systems to ensure availability, reliability, integrity, including the oversight of current and projected capacity, performance, and licensing.

Eligible candidates are requested to email their CV at rpu@gtn.com.np