CriticalSolutions, LLC

Vulnerability Assessment Analyst - Senior

CriticalSolutions, LLC  •  $106k - $136k/yr  •  Ashburn, VA (Onsite)  •  4 months ago
Apply
Save Job
Mark Applied Mark Interviewed Mark Offered
Hide Job Report Job
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Vulnerability Assessment Analyst - Senior

Location: Ashburn, VA
Type: Full-time, On-site
Salary Range: $106,000 - $136,000 per year

Critical Solutions is seeking a Senior Vulnerability Assessment Analyst to support our federal customer in Ashburn, VA.

PRIMARY ROLES AND RESPONSIBILITIES:

  • Lead the Vulnerability Analysis function of the overall Vulnerability Assessment Team, working with the Vulnerability Management function and Penetration Testing function under a unified Vulnerability Assessment Lead
  • Create and publish security-related alerts, bulletins, advisories, and notifications to all Agency's components based on identified software and hardware vulnerabilities and monitor for compliance
  • Continuously research emerging threats to the environment in order to disseminate the information to all stakeholders, immediately assess the known environment for presence of the vulnerability, and work with the NOSC, Enterprise VAT, and enterprise networking teams to proactively block exploitation within the Agency's environment
  • Conduct scheduled and ad-hoc vulnerability/compliance scanning
  • Create and maintain scans in support of continuous scanning requirements for various FISMA systems
  • Employ ad-hoc or emergency vulnerability/compliance scanning to support targeted incident investigation, escalation, and emergency response to security events in accordance with documented procedures
  • Coordinate with NOSC cybersecurity leadership and FISMA system ISSOs and system owners to explain findings, provide recommendations on mitigations, and advocate for mitigation of vulnerabilities
  • Track and trend vulnerabilities for HQ NOSC to assess and depict risk posture
  • Correlate CISA KVEs and incorporate into NOSC scanning as applicable
  • Conduct, operate, and maintain vulnerability/compliance assessments and the resulting data and reports
  • Conduct Host-based and Network Vulnerability Assessments
  • Conduct Database Vulnerability Assessments
  • Conduct Web-based Vulnerability Assessments
  • Author and maintain SOPs and runbooks
  • Other duties as assigned

BASIC QUALIFICATIONS:

  • Must be US Citizen and and must be able to obtain and maintain an Entry on Duty (EOD) clearance
  • Bachelors' degree from an accredited college in IT, cybersecurity, computer science, or related field, or equivalent experience/combined education, with 12 years of professional experience; or a Masters' degree with 10-13 years of professional experience
  • At least six years of direct experience in vulnerability assessment/management
  • Familiar with the management, operational, and technical aspects of IT Security in a complex environment.
  • Experience working with industry-standard cybersecurity methodologies and processes
  • Advanced knowledge of TCP/IP protocols
  • Experience configuring and implementing various technical security solutions,
  • Substantial experience managing vulnerability/compliance scans using Tenable Nessus and/or Security Center
  • Expert in Nessus Manager
  • Expert in Tenable.io

PREFERRED QUALIFICATIONS:

  • Experience working in cyber operations, particularly for a federal government customer
  • Experience supporting large and diverse cybersecurity environments
  • Moderate proficiency in Splunk
  • Familiarity with Swimlane
  • Familiar with basic functions of Axonius
  • Understanding of MITRE ATT&CK and various attack and defense methodologies
  • Expertise in Linux and Windows operating systems
  • Experience with supporting ATO audits, FISMA compliance, and other ISSO functions

ADDITIONAL INFORMATION:

Clearance Requirement: US CITIZENSHIP IS REQUIRED. In addition, selected candidate must undergo background investigation (BI) and finger printing by the federal agency and successfully pass the preceding to qualify for the position.

CRITICAL SOLUTIONS PAY AND BENEFITS:

Salary range $106,000 - $136,000. The salary range for this position represent the typical salary range for this job level and this does not guarantee a specific salary. Compensation is based upon multiple factors such as responsibilities of the job, education, experience, knowledge, skills, certifications, and other requirements.

BENEFIT SNAPSHOT: 100% premium coverage for Medical, Dental, Vision, and Life Insurance, Supplemental Insurance, 401K matching, Flexible Time Off (PTO/Holidays), Higher Education/Training Reimbursement, and more.

CriticalSolutions, LLC

About CriticalSolutions, LLC

Critical Solutions, LLC specializes in providing cyber security services to the Federal Government. As a small business, we work as a tight-knit, cohesive unit to adapt to and defend our clients against the ever changing threat landscape.

With cyberterrorism being as ubiquitous as it is nebulous, the stakes have never been higher. According to the Department of Homeland Security's United States Computer Emergency Readiness Team (US-CERT), in 2012 alone there was a 68% increase in cyber incidents involving Federal agencies, critical infrastructure, and the Department's industry partners. Motivations for attacks - whether they be foreign governments targeting intellectual property, lone hackers seeking notoriety, social activists trying to send a message, or criminal organizations pursuing financial gain - are as varied as the means by which they are carried out.

Industry
IT & Software
Company Size
11-50 employees
Headquarters
Pasadena, MD
Year Founded
2011
Website
criticalsolutionsit.com
Social Media