Cyber Vulnerability Assessment Analyst

3 weeks ago

Ashburn, United States Dhara Consulting Group Full time

Today
- Dept of Homeland Security
- Unspecified
- Unspecified
- IT - Security
- Ashburn, VA** (ON-SITE/OFFICE)**
- R-00133208
**Description**

Department of Homeland Security (DHS) Network Operations Security Center (NOSC) is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the DHS Enterprise. The DHS NOSC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component Security Operations Center (SOC). Direction and coordination are achieved through a shared DHS incident tracking system and other means of coordination and communication.
**Security Clearance Required**: Active/Current Top Secret clearance to be considered.
Must be US Citizen.
**Primary Responsibilities**

Information Security Vulnerability Management
- Continuously research emerging threats to the environment in order to disseminate the information to all stakeholders, immediately assess the known environment for presence of the vulnerability, and work with the NOSC and enterprise networking teams to proactively block exploitation within the DHS environment.
- Perform enterprise-wide network scans, agent scans, including credentialed scans of UNIX, Windows, Network devices, and VMware assets
- Develop and execute vulnerability/compliance scans through Tenable.SC interface, determine whether a completed scan has provided valid results, and generate a variety of reports to meet customer needs and expectations
- Configure and maintain scan templates based on asset types, repository, credentials, etc. in support of continuous scanning requirements for various FISMA systems
- Maintain, optimize, and troubleshoot scan policies and repositories.
- Manage scan policies for multiple FISMA systems
- Perform vulnerability analysis from scan results and prioritize vulnerabilities and findings for remediation
- Coordinate with NOSC cybersecurity leadership, FISMA system ISSOs, and system owners to explain findings, provide recommendations on mitigations, and advocate for mitigation of vulnerabilities
- Conduct scheduled and ad-hoc or emergency vulnerability/compliance scanning to support targeted incident investigation, escalation, and emergency response to security events in accordance with documented procedures
- Conduct Host-based and Network Vulnerability Assessments
- Conduct Database Vulnerability Assessments
- Conduct Web-based Vulnerability Assessments
- Author and maintain SOPs and runbooks
- Other duties as assigned

**Basic Qualifications**

Bachelors’ degree from an accredited college in a related discipline, or equivalent experience/combined education, with 2-4 years of professional experience; or 1-2 years of professional experience with a Masters’ degree. At least two years of direct experience in vulnerability assessment/management. Familiar with the management, operational, and technical aspects of IT Security in a complex environment. Experience working with industry-standard cybersecurity methodologies and processes Advanced knowledge of TCP/IP protocols Experience configuring and implementing various technical security solutions, Substantial experience managing vulnerability/compliance scans using Nessus, Burpsuite, and/or Tenable.

**Should have at least ONE of the following certifications**:

- CompTIA: CASP, Pentest+
- SANS GIAC: GPEN, GWAPT, GSNA, GISF, GAWN, GXPN, GWEB
- Offensive Security: OSCP, OSCE, OSWP, OSEE
- ISC2: CISSP
- EC Council: CEH
- Splunk: Core Certified Advanced Power User, Core Certified Consultant, SOAR Certified Automation Developer
- eLearn: Security Certified Professional Penetration Tester (eCPPT)

**Preferred Qualifications**
- Previous experience working in a DHS or other federal government agency SOC/NOC/NOSC environment
- Knowledge of Cyber Kill Chain and MITRE ATT&CK frameworks

**Original Posting Date**: 2024-04-10

**Pay Range**:Pay Range $65,000.00 - $117,500.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

**GROUP ID**: SCNCAPI2

**R**

**Recruiter**

**APPLY NOW

  • Cyber Security Analyst

    1 month ago

    Ashburn, United States IMPYRIAN Full time

    Job DescriptionJob DescriptionCOMPANY OVERVIEWAt Impyrian, our commitment to excellence, client-centric approach, and deep industry expertise set us apart. We strive to be a trusted partner for organizations seeking to embrace digital transformation, bolster cybersecurity, streamline operations, leverage advanced audio-visual technologies, drive successful...

  • Cyber Security Analyst

    4 weeks ago

    Ashburn, United States IMPYRIAN Full time

    Job DescriptionJob DescriptionCOMPANY OVERVIEWAt Impyrian, our commitment to excellence, client-centric approach, and deep industry expertise set us apart. We strive to be a trusted partner for organizations seeking to embrace digital transformation, bolster cybersecurity, streamline operations, leverage advanced audio-visual technologies, drive successful...

  • Cyber Threat Analyst

    3 weeks ago

    Ashburn, United States Gray Tier Technologies LLC Full time

    Primary Responsibilities: Shift schedule: 7pm-7am, Thurs-Sat, every other Wednesday. Utilize state of the art technologies such as Endpoint Detection & Response tools, log analysis (Splunk) and possibly network forensics (full packet capture solution) to perform hunt and investigative activity to examine endpoint and network-based data. Conduct log...

  • Cyber Security Analyst

    3 weeks ago

    Ashburn, United States IMPYRIAN Full time

    **COMPANY OVERVIEW** At Impyrian, our commitment to excellence, client-centric approach, and deep industry expertise set us apart. We strive to be a trusted partner for organizations seeking to embrace digital transformation, bolster cybersecurity, streamline operations, leverage advanced audio-visual technologies, drive successful engineering and...

  • Cyber Lead Manager

    4 weeks ago

    Ashburn, Virginia, United States Telos Corporation Full time

    Job TitleCyber Lead Manager - ITGJob DescriptionThe most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security.Be a part of...

  • Cyber Lead Manager

    1 month ago

    Ashburn, Virginia, United States Telos Corporation Full time

    Job TitleCyber Lead Manager - ITGJob DescriptionThe most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security.Be a part of...

  • Cyber Lead Manager

    3 weeks ago

    Ashburn, United States Telos Corporation Full time

    **Job Description**: The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security. Be a part of the Telos culture and see...

  • Cyber Incident Response Analyst

    2 weeks ago

    Ashburn, United States Leidos Full time

    **Description** Our Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the government Enterprise. We have primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet...

  • Penetration Tester with Security Clearance

    4 weeks ago

    Ashburn, United States Base One Technologies Full time

    Primary ResponsibilitiesPerform internal and external pentest against systems to determine vulnerabilities and offer mitigation strategies.Perform web app pentestsPerform vulnerability risk assessmentPerform physical pentests and social engineeringPerform cyber incident response as needed for programs Basic QualificationsBachelors' degree from an accredited...

  • Cyber Network Defense Analyst

    3 weeks ago

    Ashburn, United States Leidos Full time

    **Description** The Network Operations Security Center (NOSC) is a U.S. Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the enterprise. The NOSC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection...

  • Cybersecurity Analyst Task Lead, Senior

    1 month ago

    Ashburn, United States ESM Full time

    Job DescriptionJob DescriptionEnterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Sr Cybersecurity Analyst TL (KP) for an exciting opportunity located in Ashburn, Va. Job Description and ResponsibilitiesExciting...

  • Cybersecurity Analyst Task Lead, Senior

    4 weeks ago

    Ashburn, United States ESM Full time

    Job DescriptionJob DescriptionEnterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Sr Cybersecurity Analyst TL (KP) for an exciting opportunity located in Ashburn, Va. Job Description and ResponsibilitiesExciting...

  • Penetration Tester with Security Clearance

    2 weeks ago

    Ashburn, Virginia, United States Base One Technologies Full time

    Primary Responsibilities: Conduct internal and external pentests on systems to identify vulnerabilities and provide mitigation strategies. Perform web application pentests. Carry out vulnerability risk assessments. Execute physical pentests and social engineering tests. Participate in cyber incident response activities as necessary. Basic...

  • Cyber Security Specialist

    1 week ago

    Ashburn, United States CACI International Inc Full time

    Cyber Security Specialist (ISSO)Job Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: NoneEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: Local* * * General Description What you’ll get to do: The Cybersecurity Specialist with both strong cybersecurity and network security delivery...

  • Cyber Threat Detection Engineer SME

    4 weeks ago

    Ashburn, United States Base One Technologies Full time

    BS degree in Science, Technology, Engineering, Math or related field and 8 years of prior relevant experience with a focus on cyber security or Masters with 6 years of prior relevant experience. Should have 5 years of experience serving as a digital media Primary Responsibilities Identify gaps in malicious activity detection capabilities Create new...

  • Cyber Threat Detection Engineer SME

    2 months ago

    Ashburn, United States CareerBuilder Full time

    BS degree in Science, Technology, Engineering, Math or related field and 8 years of prior relevant experience with a focus on cyber security or Masters with 6 years of prior relevant experience. Should have 5 years of experience serving as a digital media Primary Responsibilities Identify gaps in malicious activity detection capabilities Create new...

  • Cybersecurity Analyst Task Lead, Senior

    3 weeks ago

    Ashburn, United States ESM Full time

    Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Sr Cybersecurity Analyst TL (KP) for an exciting opportunity located in Ashburn, Va. Job Description and ResponsibilitiesExciting opportunity supporting a...

  • Cybersecurity Analyst Task Lead, Senior

    4 weeks ago

    Ashburn, United States ESM Full time

    Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Sr Cybersecurity Analyst TL (KP) for an exciting opportunity located in Ashburn, Va. Job Description and ResponsibilitiesExciting opportunity supporting a...

  • Penetration Tester Jr.

    4 weeks ago

    Ashburn, United States Federal Staffing Solutions Inc. Full time

    Job DescriptionJob DescriptionWe connect our employees with some of the best opportunities around.Time and again, our employees tell us that the most important thing we offer is respect. Federal Staffing Solutions puts people to work in all types of jobs. When you work with us, you build a relationship with a team of employment professionals in your...

  • Penetration Tester Jr.

    4 weeks ago

    Ashburn, United States Federal Staffing Solutions Inc. Full time

    Job DescriptionJob DescriptionWe connect our employees with some of the best opportunities around.Time and again, our employees tell us that the most important thing we offer is respect. Federal Staffing Solutions puts people to work in all types of jobs. When you work with us, you build a relationship with a team of employment professionals in your...