121 Security Analyst jobs in Richmond
Penetration Tester
23214 Richmond, Virginia
Verite Group
Posted 17 days ago
Job Viewed
Job Description
Career Opportunities with Verite Group, Inc. A great place to work. Interested in a Career at Verite Group? Confidentially apply HERE . VGI is a custom software company supporting government missions and private sector enterprises for over two decades. VGI staff combine a strong technical prowess with a deep understanding of our customers and their operations. VGI can take your current network needs and challenges and create tools that protect your data throughout its lifecycle. Verite Group offers 100% paid Benefits, 15% Employer Contribution to 401K, Flex-Time, Year End Bonuses, Overtime and many more Amazing first-class benefits. JOB DESCRIPTION AND RESPONSIBILITIES: Seeking a penetration tester for a customer mission system. The successful candidate will perform vulnerability assessments and penetration testing following the customers prescribed scope statement with authorities derived from the customers Enterprise cyber security organization. The ideal candidate must display familiarity with Windows and Linux Mobile operating systems and be able to conduct network and security vulnerability analysis. Specifically, the candidate will analyze mission systems to help assess vulnerability to compromise from adversaries. The successful candidate must have prior experience with scope defined penetration testing using mainly open source tools. Penetrate desktops, servers, applications, operating systems, and security systems to gain root/admin access. Provide black-box penetration testing utilizing tools and techniques to conduct cybersecurity evaluations for highly specialized network communication systems. Modify open source exploits to bypass/evade antivirus, firewalls, hardened systems, and IDS/IPS systems. Modify computer/system/network attacks, exploits, and Metasploit modules to create variations that evade detection. Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation for multiple targets. Hide digital artifacts and communications to evade antivirus, firewalls, IDS/IPS systems, Wireshark, and TCPDump. REQUIRED SKILLS AND QUALIFICATIONS: 3-5 years of exploit development, computer/network security, or network traffic analysis using analytical tools. Experience with Kali Linux and Metasploit tools. DESIRED SKILLS AND QUALIFICATIONS: Degree in Computer Science, Engineering, Computer Forensics, Network Security, or equivalent technical experience. Expert knowledge of networking components/devices and various OS/applications in Linux and Windows environments. At least one of the following certifications: CISSP, OSCP, CEH, CEPT, GPEN, EnCE, GASF, GSFE. Demonstrated experience in three or more specific areas to include: analysis, network engineering, networking security, penetration testing, red teaming, hardware engineering, software reverse engineering, and computer exploitation. Education Bachelor’s degree (or equivalent) in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field. Clearance: TS or TS/SCI WORK LOCATION: Dulles, VA TRAVEL: 0% KEY WORDS: GPEN, OSCP VGI is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation or any other classification protected by federal, state or local law. #J-18808-Ljbffr
Apply Now
0
Security Analyst
23214 Richmond, Virginia
Apollo ITS
Posted 6 days ago
Job Viewed
Job Description
Role: Security Analyst
Location: Richmond, VA
Duration: 12+ months
Interview: In Person Only
Job Description:
VDOT is seeking a highly motivated Security Analyst to support cybersecurity operations within the
Operations Technology (OT) environment, with a specific focus on the integration and ongoing monitoring of the Tolling Division's systems
Key Responsibilities
Required:
Location: Richmond, VA
Duration: 12+ months
Interview: In Person Only
Job Description:
VDOT is seeking a highly motivated Security Analyst to support cybersecurity operations within the
Operations Technology (OT) environment, with a specific focus on the integration and ongoing monitoring of the Tolling Division's systems
Key Responsibilities
- Monitor security alerts and logs for tolling-related infrastructure using existing SIEM and other monitoring tools.
- Analyze, investigate, and triage security events and potential incidents involving tolling systems and devices.
- Coordinate with Tolling Division personnel, vendors, and OT operation steams to facilitate incident response, forensics, and remediation activities.
- Assist in onboarding tolling systems into the OT cybersecurity monitoring process, including asset inventory, log ingestion, and configuration baselines.
- Perform security assessments and reviews of tolling systems for vulnerabilities, misconfigurations, and gaps in compliance with standards such as NIST 800-53, NIST 800-82, and agency-specific policies.
- Support integration of tolling infrastructure into existing OT cybersecurity tools, including vulnerability management, endpoint detection, asset management, and access controls.
- Participate in the development and maintenance of incident response procedures and playbooks specific to tolling infrastructure.
- Contribute to regular security reporting, dashboards, and metrics for tolling systems.
- Collaborate with internal and external stakeholders to enhance the security posture of the tolling environment.
Required:
- Bachelor's degree in Cybersecurity, Information Technology, Engineering, or a related field; OR equivalent experience.
- 3+ years of experience in cybersecurity, with at least 1 year supporting OT, ICS/SCADA, or critical infrastructure environments.
- Familiarity with SIEM tools, log analysis, and incident response workflows.
- Working knowledge of networking protocols, system hardening, and asset inventory practices.
- Strong analytical, communication, and collaboration skills.
- Experience supporting or securing tolling systems, traffic management infrastructure, or roadside equipment.
- Knowledge of security frameworks such as NIST 800-53, NIST 800-82,or CIS Controls.
- Certifications such as GICSP, GCIA, CompTIA Security+, or CISSP.
- Experience working with third-party vendors and supporting environments with both state-managed and vendor-managed components.
- Experience supporting or securing tolling systems, traffic management infrastructure, or roadside equipment.
- Knowledge of security frameworks such as SEC 530, NIST 800-53, NIST 800-82, or CIS Controls.
- Experience working with third-party vendors and supporting environments with both state-managed and vendor-managed components.
View Now
1
Senior Information Security Analyst
23220 Richmond, Virginia
$110000 Annually
WhatJobs
Posted 3 days ago
Job Viewed
Job Description
Our client is looking for a highly skilled and experienced Senior Information Security Analyst to join their dynamic team in **Richmond, Virginia, US**. This role is crucial in safeguarding the organization's digital assets, data, and systems from evolving cyber threats. The Senior Information Security Analyst will be instrumental in developing, implementing, and maintaining robust security strategies and controls. Responsibilities include conducting comprehensive risk assessments, vulnerability analyses, and penetration testing to identify and mitigate security weaknesses. You will be responsible for monitoring security alerts, investigating incidents, and coordinating response activities to minimize damage and ensure business continuity. A significant part of this role involves staying abreast of the latest cybersecurity trends, threats, and technologies, and translating this knowledge into actionable security enhancements. The ideal candidate will possess a deep understanding of network security, endpoint security, cloud security, and identity and access management. Experience with security frameworks such as NIST, ISO 27001, and CIS Controls is essential. You will be involved in developing and delivering security awareness training to employees, fostering a security-conscious culture throughout the organization. This position requires excellent analytical and problem-solving skills, coupled with strong communication abilities to effectively articulate complex security concepts to both technical and non-technical stakeholders. The Senior Information Security Analyst will also contribute to the development and enforcement of security policies, standards, and procedures. Proactive threat hunting and incident response planning are core functions of this role. You will collaborate closely with IT teams, development teams, and business units to embed security best practices into all aspects of the organization's operations. This is an exciting opportunity for a seasoned security professional to make a significant impact in protecting a growing enterprise. If you are passionate about cybersecurity and possess a strong desire to defend against cyberattacks, we encourage you to apply.
Responsibilities:
Responsibilities:
- Conduct security risk assessments and vulnerability analyses.
- Develop and implement security policies, standards, and procedures.
- Monitor security systems and respond to security incidents.
- Perform penetration testing and vulnerability scanning.
- Manage and maintain security tools and technologies.
- Provide security recommendations and guidance to IT and business units.
- Develop and deliver security awareness training.
- Stay current with cybersecurity threats and best practices.
- Contribute to incident response planning and execution.
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 5+ years of experience in information security.
- Proven experience with security frameworks (NIST, ISO 27001).
- Proficiency in security tools (SIEM, IDS/IPS, firewalls).
- Strong understanding of network protocols and cybersecurity principles.
- Excellent analytical and problem-solving skills.
- Relevant certifications such as CISSP, CISM, or CEH are highly desirable.
View Now
2
Principal Information Security Analyst
23218 Richmond, Virginia
$120000 Annually
WhatJobs
Posted 3 days ago
Job Viewed
Job Description
Our client, a leading financial services organization, is looking for a highly skilled and experienced Principal Information Security Analyst to join their cybersecurity team in Richmond, Virginia, US . This senior-level position will play a critical role in protecting the organization's digital assets and sensitive data from a wide range of cyber threats. You will be responsible for developing, implementing, and maintaining robust security policies, procedures, and technical controls. Key responsibilities include conducting advanced threat analysis, vulnerability assessments, penetration testing, and security incident response. You will also lead security awareness training initiatives, advise on security best practices for new systems and applications, and stay abreast of emerging threats and security technologies.
The ideal candidate will have a Bachelor's degree in Computer Science, Information Security, or a related field, with a Master's degree or equivalent experience highly preferred. A minimum of 7-10 years of progressive experience in information security, with a strong focus on cybersecurity operations, risk management, and incident response, is required. Professional certifications such as CISSP, CISM, or CEH are strongly desired. Expertise in security frameworks (e.g., NIST, ISO 27001), SIEM tools, firewalls, IDS/IPS, endpoint security solutions, and encryption technologies is essential. You must possess excellent analytical, problem-solving, and communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences. Experience with cloud security (AWS, Azure, GCP) and security automation is a significant advantage. This role requires a proactive and strategic mindset, dedicated to safeguarding the organization's information assets and ensuring compliance with regulatory requirements. Join our client and be at the forefront of cybersecurity innovation.
The ideal candidate will have a Bachelor's degree in Computer Science, Information Security, or a related field, with a Master's degree or equivalent experience highly preferred. A minimum of 7-10 years of progressive experience in information security, with a strong focus on cybersecurity operations, risk management, and incident response, is required. Professional certifications such as CISSP, CISM, or CEH are strongly desired. Expertise in security frameworks (e.g., NIST, ISO 27001), SIEM tools, firewalls, IDS/IPS, endpoint security solutions, and encryption technologies is essential. You must possess excellent analytical, problem-solving, and communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences. Experience with cloud security (AWS, Azure, GCP) and security automation is a significant advantage. This role requires a proactive and strategic mindset, dedicated to safeguarding the organization's information assets and ensuring compliance with regulatory requirements. Join our client and be at the forefront of cybersecurity innovation.
View Now
3
Senior Information Security Analyst
23219 Richmond, Virginia
$120000 Annually
WhatJobs
Posted 3 days ago
Job Viewed
Job Description
Our client is seeking a highly skilled and experienced Senior Information Security Analyst to join their dedicated cybersecurity team in Richmond, Virginia, US . In this vital role, you will be responsible for protecting the organization's sensitive data and information assets by implementing and managing robust security measures. Your expertise will be crucial in identifying vulnerabilities, developing security policies, and responding to security incidents. Key responsibilities include conducting regular security risk assessments, performing penetration testing and vulnerability scanning, and developing and implementing security awareness training programs for employees. You will also be involved in the design and implementation of security solutions, such as firewalls, intrusion detection systems, and encryption technologies. The Senior Information Security Analyst will monitor security alerts and events, analyze security breaches, and lead incident response efforts. Staying current with emerging threats and security technologies is paramount. The ideal candidate will have a Bachelor's degree in Computer Science, Information Technology, or a related field, and at least 5-7 years of experience in information security. Professional certifications such as CISSP, CISM, or Security+ are highly preferred. Strong knowledge of security frameworks (e.g., NIST, ISO 27001), network security principles, and various security tools is required. Excellent analytical, problem-solving, and communication skills are essential for collaborating with cross-functional teams and communicating complex security concepts. This is an excellent opportunity to advance your career in a challenging and rewarding cybersecurity environment.
View Now
4
Senior Information Security Analyst
23218 Richmond, Virginia
$110000 Annually
WhatJobs
Posted 3 days ago
Job Viewed
Job Description
Our client is seeking a highly skilled and motivated Senior Information Security Analyst to bolster their cybersecurity posture at their headquarters in Richmond, Virginia, US . This pivotal role will involve defending the organization's digital assets, identifying vulnerabilities, and implementing robust security measures. The ideal candidate will possess deep technical expertise in various security domains, a proactive approach to threat detection and mitigation, and exceptional analytical skills. You will be instrumental in safeguarding sensitive data and ensuring the integrity of our IT infrastructure.
Responsibilities:
Qualifications:
Responsibilities:
- Develop, implement, and maintain comprehensive information security policies, procedures, and standards.
- Conduct regular vulnerability assessments and penetration testing to identify and remediate security weaknesses.
- Monitor security alerts and events, investigate suspicious activities, and respond to security incidents effectively.
- Analyze security logs and data from various systems to detect and prevent cyber threats.
- Implement and manage security tools and technologies, including firewalls, intrusion detection/prevention systems (IDPS), SIEM, endpoint detection and response (EDR), and data loss prevention (DLP).
- Develop and deliver security awareness training to employees to foster a security-conscious culture.
- Stay abreast of the latest cybersecurity threats, trends, and best practices, and recommend appropriate countermeasures.
- Collaborate with IT teams to ensure security is integrated into the design and implementation of new systems and applications.
- Develop and maintain incident response plans, and participate in tabletop exercises to test preparedness.
- Manage security audits and compliance efforts, ensuring adherence to regulatory requirements (e.g., GDPR, HIPAA, PCI DSS).
- Perform risk assessments and develop mitigation strategies for identified risks.
- Provide expert guidance and support on information security matters to various departments within the organization.
- Manage security vendor relationships and evaluate new security solutions.
- Contribute to the development of disaster recovery and business continuity plans.
- Analyze the security impact of proposed changes to IT infrastructure.
Qualifications:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. A Master's degree is a plus.
- Minimum of 7 years of experience in information security, with a focus on security operations, threat analysis, and incident response.
- Proven experience with security frameworks such as NIST, ISO 27001, and CIS Controls.
- In-depth knowledge of network security principles, cryptography, and risk management.
- Hands-on experience with SIEM, EDR, firewalls, and other security technologies.
- Strong understanding of common attack vectors and mitigation techniques.
- Excellent analytical and problem-solving skills.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation is desirable.
- Relevant security certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly regarded.
- Strong communication and interpersonal skills, with the ability to explain complex security concepts to non-technical audiences.
View Now
5
Senior Information Security Analyst
23233 Richmond, Virginia
$110000 Annually
WhatJobs
Posted 4 days ago
Job Viewed
Job Description
Our client, a leading technology firm, is seeking a highly skilled and experienced Senior Information Security Analyst to join their dynamic team in Richmond, Virginia, US . This pivotal role will involve safeguarding sensitive company data and systems from evolving cyber threats. You will be responsible for conducting comprehensive risk assessments, developing and implementing robust security policies, and responding to security incidents. The ideal candidate will have a deep understanding of network security principles, cryptography, and common attack vectors.
Key responsibilities include:
Key responsibilities include:
- Designing, implementing, and managing security controls to protect enterprise assets.
- Performing vulnerability assessments and penetration testing to identify and remediate security weaknesses.
- Developing and maintaining incident response plans and procedures.
- Monitoring security alerts and investigating potential security breaches.
- Collaborating with IT teams to ensure secure system configurations and deployments.
- Staying abreast of the latest security trends, threats, and best practices.
- Providing security awareness training to employees.
- Ensuring compliance with relevant industry regulations and standards.
- Bachelor's degree in Computer Science, Information Technology, or a related field.
- Minimum of 5 years of experience in information security or a related role.
- Proven experience with security frameworks such as NIST, ISO 27001, and GDPR.
- Strong knowledge of SIEM tools, IDS/IPS, firewalls, and endpoint security solutions.
- Excellent analytical, problem-solving, and communication skills.
- Relevant security certifications such as CISSP, CISM, or GIAC are highly desirable.
View Now
Be The First To Know
About the latest Security analyst Jobs in Richmond !
6
Senior Information Security Analyst
23219 Richmond, Virginia
$130000 Annually
WhatJobs
Posted 4 days ago
Job Viewed
Job Description
Join a cutting-edge technology firm in Richmond, Virginia, US as a Senior Information Security Analyst. Our client is at the forefront of developing innovative software solutions and requires a dedicated professional to safeguard its digital assets and infrastructure. This role involves developing, implementing, and managing comprehensive information security policies, procedures, and controls to protect sensitive data and ensure compliance with industry regulations. You will be responsible for conducting risk assessments, vulnerability testing, and penetration testing to identify and mitigate potential security threats. Key duties include monitoring security systems, investigating security incidents, and developing incident response plans. You will also collaborate with IT teams to implement security best practices across all systems and applications, provide security awareness training to employees, and stay abreast of the latest cybersecurity threats and technologies. The ideal candidate possesses a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, coupled with a minimum of 6 years of experience in information security. Professional certifications such as CISSP, CISM, or CEH are highly desirable. Strong knowledge of network security, cryptography, risk management frameworks (e.g., NIST), and various security tools (SIEM, IDS/IPS, firewalls) is essential. Excellent analytical and problem-solving skills are required, along with strong communication abilities to explain complex security concepts to both technical and non-technical audiences. This position offers a challenging and rewarding environment for a security professional looking to make a significant impact.
View Now
7
Senior Information Security Analyst
23218 Richmond, Virginia
$115000 Annually
WhatJobs
Posted 5 days ago
Job Viewed
Job Description
Our client, a rapidly growing technology firm, is seeking a highly skilled Senior Information Security Analyst to join their cybersecurity team in Richmond, Virginia, US . This role is critical in protecting the organization's digital assets and ensuring the confidentiality, integrity, and availability of information systems. The ideal candidate will possess extensive experience in cybersecurity best practices, risk management, and incident response. You will be responsible for implementing and maintaining security controls, conducting vulnerability assessments, and developing security policies and procedures. The Senior Information Security Analyst will lead threat detection and analysis efforts, investigate security incidents, and provide technical guidance on security-related matters. This position demands a deep understanding of network security, cloud security, endpoint security, and data protection principles. Key responsibilities include monitoring security alerts, performing penetration testing, analyzing security logs, and developing remediation strategies. The successful candidate must have a strong ability to identify and mitigate cybersecurity threats, stay abreast of emerging technologies and threats, and communicate complex security concepts to both technical and non-technical audiences. Proficiency in security information and event management (SIEM) tools, intrusion detection/prevention systems (IDS/IPS), and endpoint detection and response (EDR) solutions is essential. We are looking for a proactive and detail-oriented individual who can contribute to the overall security posture of the organization. This is an excellent opportunity to work on cutting-edge security technologies and make a significant impact in safeguarding sensitive information. The role requires strong analytical skills, problem-solving capabilities, and the ability to work independently and collaboratively in a dynamic environment. The successful candidate will play a key role in developing and implementing robust security strategies. Experience with security frameworks like NIST and ISO 27001 is highly desirable.
Responsibilities:
Responsibilities:
- Develop and implement information security policies and procedures.
- Conduct vulnerability assessments and penetration testing.
- Monitor security alerts and investigate potential security incidents.
- Implement and manage security controls across various systems.
- Analyze security logs and develop threat detection capabilities.
- Respond to and manage security incidents, including containment and eradication.
- Provide technical guidance on security best practices to IT teams.
- Stay current with emerging cybersecurity threats and technologies.
- Contribute to security awareness training programs.
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 5+ years of experience in information security or cybersecurity roles.
- In-depth knowledge of network security, cloud security, and endpoint security.
- Experience with SIEM, IDS/IPS, and EDR tools.
- Familiarity with security frameworks (NIST, ISO 27001).
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal abilities.
- Relevant certifications such as CISSP, CISM, or CEH are highly preferred.
View Now
8
Senior Information Security Analyst
23218 Richmond, Virginia
$115000 Annually
WhatJobs
Posted 5 days ago
Job Viewed
Job Description
Our client, a leading financial services firm in Richmond, Virginia, US , is seeking a Senior Information Security Analyst to bolster their cybersecurity defenses and ensure the protection of sensitive data and systems. This critical role involves identifying vulnerabilities, developing and implementing security controls, responding to security incidents, and promoting a security-aware culture across the organization. You will be responsible for conducting risk assessments, penetration testing, security audits, and developing and refining security policies and procedures. The ideal candidate will possess extensive knowledge of cybersecurity frameworks, threat intelligence, network security, endpoint security, and data privacy regulations. You will collaborate closely with IT teams, legal, and compliance departments to maintain a robust security posture. This is an excellent opportunity to contribute to critical security initiatives in a dynamic and high-stakes environment. Key responsibilities include:
- Conducting comprehensive risk assessments and vulnerability analyses of IT systems and applications.
- Developing, implementing, and maintaining security policies, standards, and procedures.
- Monitoring security alerts and responding to security incidents in a timely and effective manner.
- Performing penetration testing and security audits to identify and remediate weaknesses.
- Implementing and managing security tools, such as SIEM, IDS/IPS, firewalls, and endpoint protection solutions.
- Providing security awareness training to employees and promoting best practices.
- Staying current with emerging cyber threats, vulnerabilities, and security technologies.
- Collaborating with IT and business units to ensure security is integrated into all aspects of operations.
- Assisting with compliance efforts related to regulations such as GDPR, CCPA, and PCI DSS.
View Now
9