Job Listing Information
- 16-Dec-2024 to 30-Dec-2024 (UTC)
- Richmond, VA, USA
- Full Time
- Long Term Contract Length
- 40 Weekly Hours
Complete Description:
Pentest
- Perform Pentest on VDH Application in a timely manner.
- Testing: Performing remote or onsite tests on all VDH systems, networks, and applications to identify security weaknesses
- Analyzing: Analyze the vulnerabilities and mitigation methods
- Reporting: Provide reports which include findings, risks, and conclusions
- Advising: Recommend security improvements and methods to mitigate security risks
- Collaborating: Working with VDH IT to determine their testing requirements
- Creating: Creating and implementing new penetration testing methods, scripts, and tool
Splunk
- Management of Data Collection Infrastructure
- Deployment Server management to distribute Splunk Universal Forwarder (UF) instances
- Syslog servers that collect data from infrastructure systems (firewalls, IDS, UPS or other syslog generating device)
- Splunk heavy forwarders which can collect information from various databases or third-party systems
- Splunk HTTP event collector to obtain data from custom applications (Java, .net, JavaScript, or other web apps), and
- When used, Splunk Stream to capture wire data and output raw or statistical information about the data.
- Re-architecture of Syslog aggregation for Splunk or extensive modification to Syslog configuration (configuring new storage, building for high availability, etc.)
- Expanding log source collection of an existing source type
- Custom script development (e.g., for data collection or integration to non-standard products)
Fill the skill matrix below:
|
Skill |
Required/Desired |
Amount |
Candidate's No. of years of experience |
|
Splunk Admin |
Required |
3 |
|
|
PenTest |
Required |
4 |
|
|
Risk Assessment |
Desired |
3 |
|
|
NIST 800-53 |
Desired |
3 |
|
|
Security Awareness |
Required |
2 |
|
|
Vulnerability Management |
Required |
2 |
|
|
Team Player |
Required |
4 |
|