cover image
CBC

CBC

www.cbcinc.ai

229 Employees

About the Company

At CBC, we are committed to ensuring that we're always at the forefront of capability creation. We collaborate closely with our clients, partners, and stakeholders, acting as strategic allies in their digital transformation journey. By leveraging innovative technologies and embracing disruption, we drive progress and anticipate future technology needs.
Digital Transformation || Supply Chain Solutions || Data Solutions || Cloud Solutions || Supply Chain Consulting || Professional Services ||

Listed Jobs

Company background Company brand
Company Name
CBC
Job Title
Infosec Security Analyst
Job Description
Job title: Infosec Security Analyst Role Summary: Conduct application security assessments, including manual code reviews and penetration testing, to identify and mitigate vulnerabilities in web, API, and backend components. Evaluate risk, communicate findings, and provide recommendations to improve security posture. Expectations: - Perform thorough security assessments and manual code reviews. - Demonstrate deep understanding of application security risks and mitigation strategies. - Use industry-standard testing tools and techniques. - Assess vulnerability severity and communicate risk to stakeholders. Key Responsibilities: 1. Execute comprehensive security assessments, combining secure code reviews and application penetration testing. 2. Analyze web, API, and backend components for common vulnerability classes and exploitation techniques. 3. Leverage tools such as Burp Suite, OWASP ZAP, proxy, fuzzing, and scanning utilities to conduct penetration tests. 4. Conduct in‑depth manual code reviews in one or more programming languages, identifying insecure coding patterns. 5. Evaluate risk of identified vulnerabilities, considering exploitability, impact, and business context. 6. Communicate risk assessments and remediation recommendations to technical and non‑technical stakeholders. Required Skills: - Knowledge of OWASP Top 10, secure frameworks, and secure coding best practices. - Proficiency in manual application security testing and code review. - Hands‑on experience with Burp Suite, OWASP ZAP, and related security tools. - Ability to assess and quantify vulnerability risk. - Strong communication skills for stakeholder engagement. Required Education & Certifications: - Bachelor’s degree in Computer Science, Cybersecurity, or related field (preferred). - Relevant certifications such as CEH, OSCP, or CISSP (preferred).
Reston, United states
Hybrid
02-02-2026