Database Administrator Iii - Washington, United States - RCG Inc

RCG Inc

Verified Company

Washington, United States

3 weeks ago

Posted by:

Mark Lane

beBee recruiter

Description

RCG is a growing federal contracting company and Certified as a Great Place to Work. We are looking for strongly qualified people to help support our clients.

We are currently seeking
Database Administrator III - Vulnerability Management to support a current proposal effort with our customer located in Washington, DC (with an additional location in Hillcrest Heights, MD).

The DATABASE ADMINISTRATOR III reviews, evaluates, designs, implements and maintains company database[s]. Identifies data sources, constructs data decomposition diagrams, provides data flow diagrams and documents the process. Writes codes for database access, modifications, and constructions including stored procedures. Develops and formulates standards, procedures, and conventions for database use. Works with technical/programming staff to ensure database security. Familiar with a variety of the field's concepts, practices, and procedures. Relies on experience and judgment to plan and accomplish goals. Performs a variety of complicated tasks. May lead and direct the work of others. Typically reports to a project leader or manager. A wide degree of creativity and latitude is expected.

Responsibilities include, but are not limited to:

Lead and drive remediation efforts within OSC to increase the efficiency of vulnerability management processes.
Articulate risk and impact to product, engineering and other business leaders with the ability to convey the urgency and need to remediate a vulnerability commensurate with the risk it presents to OSC.
Conduct internal vulnerability assessments and vulnerability analysis upon external vulnerability reports, zeroday announcements, security incidents etc.
Monitor and maintain vulnerability and code scanning, security configuration and other vulnerability management tools.
Develop, maintain, and recommend security policies, procedures, and standards related to vulnerability management.
Participate in security audits and assessments to ensure compliance with regulatory requirements and industry standards.
Perform vulnerability reproduction and fix validation of vulnerabilities where required.
Maintain strong knowledge of ongoing security threats, remediations and operational best practices in the threat and vulnerability management.
Create reports and dashboards to drive vulnerability remediation efforts and process improvements.
Drive regular operational and business reviews for threat and vulnerability management activities.
Support other security operation activities as needed (e.g. detection and response).
Participate in the Security Incident response.
Review, evaluate, refine, release and maintain Configuration Management Plans in support of program requirements.
Provide recommendations and guidance for the identification of Configuration Items (CI) and Computer Software Configuration Items (CSCI).
Provide guidance and expertise in the establishment, monitoring and maintenance of configuration baselines on assigned programs.
Perform, evaluate and refine Configuration Control Board (CCB) and Software Configuration Control Board (SCCB) activities to include capturing minutes and action items, tracking action items to closure, and distributing change notifications to program team members.
Monitor effectiveness and compliance on assigned programs.

Clearance:

An active SECRET clearance required.

Basic Qualifications - Required Experience, Skills:

Bachelor's Degree with four to six (4-6) years of relevant experience.
Excellent English language communication skills, both verbal and written.

Desired Experience, Skills, Knowledge:

Experience in Information Assessment and Authorization supporting the federal government.
Indepth understanding and handson experience with Qualys, to include scanning with Security Technical Information Guides (STIG) and CIS benchmarks.
MS Excel pivot tables.
A related industry certification such as GIAC GEVA, CASP, CAP, CISSP, CISM, GSEC, GMON, Security+.

Physical Demands:
Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

**_RCG, Inc. does not discriminate against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibits discrimination against all individuals based on their race, color, religion, sex, sexual orientation/gender identity, or national origin._