All roles

Attack Surface Management (ASM) Cybersecurity Analyst

Remote · USA Full-time New today

Black Lantern Security is a Services Oriented Company

  • Black Lantern Security is built around the ingenuity, passion, and determination of our Operators and Analysts
  • No one "mastermind"
  • No "cult of personality"
  • Competitive compensation and benefits
  • Healthy work-life balance
  • Project-based engagements that play to the team's strengths

Attack Surface Management (ASM) Cybersecurity Analyst Location: Remote Travel: Up to 10% travel possible, both domestically and internationally Experience Level: Entry - Mid Level Responsibilities:

  • Perform data collection in support of ASM
  • Identify vulnerabilities, communicate risk, and verify root cause
  • Perform verification/validation testing for vulnerabilities in external-facing web sites, web applications, and services; demonstrate exploitation steps and verify remediation/fixes
  • Develop custom tools and small utilities
  • Generate comprehensive reports, including detailed findings, exploitation procedures, and mitigation techniques

Preferences:

  • Strong understanding of OWASP common vulnerabilities and testing methodologies
  • Ability to communicate risks caused by web-based application vulnerabilities
  • Possess basic cybersecurity professional certifications (Security+, GSEC, SSCP)
  • Experience with ASM/OSINT tools and utilities (BurpSuite, AMASS, PassiveTotal, SecurityTrails, Nuclei, Recon-NG, GoWitness, MassDNS, Masscan, Censys.io, etc.)

Requirements:

  • Must be US citizen (must be willing to submit to federal, state, and local background checks as well as other requirements)
  • Familiarity with common web vulnerabilities including: XSS, XXE, SQL Injection, Deserialization Attacks, Path Traversal Attacks, Remote Execution Flaws, and Authentication Flaws
  • Understanding of common web application frameworks and web-based APIs
  • Experience with one or more scripting languages such as Bash, Python, Perl, PowerShell, etc.
  • Solid understanding of Open-Source Intelligence (OSINT) gathering techniques in support of ASM (subdomain discovery/enumeration, service and application enumeration, and content discovery, etc.)
  • Ability to manage, organize, analyze, and present substantial amounts of data
  • Strong written and verbal English language skills
  • Capable of working effectively and efficiently with minimal supervision

Apply tot his job Apply To this Job

Apply

Related roles

SOC Analyst - Contract - Candidate is local to Columbia, SC

Remote · USA Full-time

MDR Analyst Skillbridge Intern - Swing Shift (4pm - 12am ET)

Remote · USA Full-time

SOC Analyst / Threat Hunter

Remote · USA Full-time

IA-DOM-DOIT-TS1-SOC Analyst 2 Des Moines, IA (REMOTE)

Remote · USA Full-time

SOC Security Analyst L3

Remote · USA Full-time

SOC Analyst - Hybrid​/Remote in Netherlands or Germany; f​/m​/x

Remote · USA Full-time

XTN-C82D470 | SOC AGENT (INCIDENT HANDLING) - REMOTE

Remote · USA Full-time

Associate SOC Analyst – Japanese Fluency – US Remote (Wed-Sun schedule)

Remote · USA Full-time

SOC Analyst Intern

Remote · USA Full-time

Construction Site Safety Manager

Remote · USA Full-time

Java Developer Intern

Remote · USA Full-time

Part-Time Virtual Care Chaplain

Remote · USA Full-time

Experienced Full Stack Customer Support Specialist – Live Chat & Email Support for arenaflex

Remote · USA Full-time

Software Engineer II - Web Engineering

Remote · USA Full-time

Business Transformation Lead

Remote · USA Full-time

System Administrator (Infrastructure & Operations)

Remote · USA Full-time

Telehealth Speech Therapy - MO

Remote · USA Full-time

Experienced Healthcare Customer Service Representative – Remote Opportunity with arenaflex

Remote · USA Full-time

Experienced Customer Service Specialist – Retail Sales and Customer Experience

Remote · USA Full-time

Disaster Recovery Specialist II

Remote · USA Full-time