By /

Security Analyst

Job Type : Contract/W2/C2C

Visa Status : Any

Salary : Negotiable based on Experience

Contract Duration : 2 year+, 4 years option

Onsite Location : Multiple locations nationwide

Vacancy : 1

Job summary

Dhaka Technologies Limited is seeking a highly skilled Security Analyst for one of our clients in Annapolis, Maryland. This is a Hybrid Full-Time position.

Essential Functions

Cloud Security and Architecture:

  • Cloud Security: Design and implement security controls for cloud computing technologies, including IaaS, PaaS, and SaaS.
  • Containerization: Work with containerized and microservices architectures following industry best practices.
  • Threat Modeling: Utilize threat modeling frameworks like STRIDE and MITRE ATT&CK to identify and mitigate risks.

Application Security:

  • Secure SDLC: Integrate application security into CI/CD pipelines and secure the software development lifecycle (SDLC).
  • Code Reviews: Perform application security code reviews and roles matrix reviews.
  • Vulnerability Management: Manage vulnerability scanning, analysis, reporting, remediation planning, and tracking.

Incident Response and Investigation:

  • Incident Response: Investigate security incidents or breaches and develop strategies for response and recovery.
  • Networking Tools: Use common networking tools like Wireshark, tcpdump, and netcat for security analysis.

SKILLS, EXPERIENCE, & CAPABILITIES:

Meet the following minimum qualifications:

  • Education: Bachelor’s degree in Computer Science, Information Systems, Engineering, Cybersecurity, or a related field.
    • Substitution: A Master’s degree can substitute for 1 year of experience.
  • Experience:
    • 10+ years of Information Security experience in roles like penetration testing, application development, and application security testing.
    • 7-10 years in software development or IT security-related fields.
    • 3-5 years of experience as a Cloud Security Architect or in a related position.

Desired Qualifications:

  • Health Exchange Experience: Experience in a Health Exchange or its partners is a plus.
  • Certifications: CompTIA Security+, CISSP, or other industry-recognized certifications.
  • Cloud Applications: Experience with serverless, cloud-based enterprise applications and environments.
  • Coding Knowledge: Understanding of object-oriented coding (Java, Python, .NET, etc.).
  • Networking Protocols: Knowledge of core Internet protocols and routing (DNS, HTTP, HTTPS, TCP/IP, UDP, IPSEC, etc.).
  • Cryptography: Operational understanding of cryptography fundamentals (SSL/TLS, password security, filesystem encryption, etc.).
  • SIEM Tools: Familiarity with security information and event management (SIEM) tools.
  • Emerging Threats: Excellent understanding of emerging cybersecurity threats.

Desired Software and Services Experience:

  • Security Tools: Cloudflare, Azure Sentinel, Tenable Nessus, Rapid7 AppSec, BurpSuite, Ostorlab, Microsoft Defender, RecordedFuture, KnowBe4, Microsoft Purview, Microsoft Threat Model.
  • Project Management Tools: Jira, Confluence, SolarWinds Orion, SolarWinds ServiceDesk.
  • Development Tools: PowerShell, GitHub, GitHub Advanced Security, SQL Server Studio, Postman.

Application Process : Interested candidates should submit their resume and cover letter to hr@dhakatech.us. Please include “Security Analyst Application” in the subject line.

Are You interested?

Empowering innovation, building futures-join our IT revolution!





    Scroll to Top