SAIC
Location
Washington DC | United States
Job description
Description
SAIC is seeking a highly skilled mid-level Cybersecurity Vulnerability Analyst with a strong technical background to join our team in support of a critical US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for Patch and Vulnerability Management, contributing to the security and integrity of vital information systems.
**This position requires on-site work in downtown Washington, DC 2 days per week.**
As a Cybersecurity Vulnerability Analyst, you will play a crucial role in supporting IT Security management by conducting technical review, analysis, reporting, and working with technical solutions in the areas of vulnerability management, issue analysis, and response development and execution. You will work closely with various IT systems and teams to ensure compliance with security policies and procedures, focusing on maintaining a strong security posture for our client.
Key Responsibilities:
· Configuring and fine-tuning scanning policies to ensure comprehensive coverage of applications.
· Create and run reports to monitor the status of vulnerabilities and security issues, providing timely updates to the IT Security management.
· Work with available scripts and tools to automate security tasks and enhance the efficiency of vulnerability management processes.
· Utilize SharePoint and other collaborative platforms to store and share critical security information and findings with the team.
· Use ServiceNow or similar ticketing and incident tracking systems to manage and document requests, ensuring a structured and organized approach.
· Perform quality checks on individual work to ensure accuracy and completeness, maintaining the integrity of security data and reports.
· Create detailed work instructions and documentation for vulnerability management processes, facilitating knowledge sharing and team-wide understanding.
· Regularly update and maintain documentation related to security policies, procedures, and standards, keeping them aligned with best practices and regulatory requirements.
Qualifications
Education & Experience:
· Hold an undergraduate degree in Cybersecurity or possess a minimum of six (6) years of working experience in a technical environment with diverse IT systems.
· Have at least four (4) years configuring, running, and troubleshooting front end web application scan software.
· Hold one or more current Security certifications, such as CISSP, CISM, or Security+.
· Have experience supporting a technology infrastructure team, including areas like Networking, Windows, Azure, Unix/Linux, etc.
Required Skills:
· Working with technical solutions for security policies and ensure compliance with those policies and procedures.
· Familiarity with the National Institute of Standards and Technology (NIST) 800-53 and Cybersecurity Framework.
· Thrive in a fast-paced environment, demonstrating adaptability and problem-solving skills.
· Exhibit outstanding customer service skills and the ability to document and follow processes as needed.
· Proficiency in explaining complex policies and protocols in simple terms.
· Stay up to date on information technology trends and security standards.
· Demonstrate excellent analytical thinking and problem-solving skills to assess potential risks and develop feasible solutions.
· Prepare deliverables with a high level of quality, requiring minimal or no edits before client presentation.
· Apply critical thinking and effectively defend proposed resolutions.
· Experience with Qualys Web Application Scanning for vulnerability assessment and management is highly desirable.
· Experience with Tenable Security Center or Tenable.IO for vulnerability assessment and management is a plus. PBGC
Qualifications (Preferred):
· Completion of the Azure Fundamentals Certificate
· Experience with scanning software such as eEye Retina, ACAS, OpenVAS, Tenable SC/IO, Nessus, Nexpose, etc.
· Scripts and tools to automate security tasks and enhance the efficiency of vulnerability management processes
Job tags
Salary
