- Measures effectiveness of defense-in-depth architecture against known vulnerabilities.
- Carries out technical evaluations of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications) as well as non-technical assessments of people and operations to assess risks and vulnerabilities.
- Reviews continuous audit and vulnerability assessment data and collaborates with the threat intelligence section to prioritize and manage patch updates based on the risk and impact within the environment.
- Conducts necessary reviews in the given environment, such as Technical Surveillance Countermeasure Reviews (TSCM), and TEMPEST countermeasure reviews.
- Associate's degree with 10+ years, or Bachelor's degree with 5+ years of related cybersecurity experience, including at least 5 years performing hands-on vulnerability analysis security work, and assessing security posture based on required cybersecurity principles (directly relevant advanced degrees may be considered partly in lieu of direct experience).
- Knowledge of risk management processes
- Knowledge of cyber threats and vulnerabilities
- Knowledge of application vulnerabilities
- Knowledge of host/network access control
- Knowledge of cybersecurity and privacy principles and organizational requirements (related to confidentiality, integrity, availability, authentication, non-repudiation)
- Knowledge of network access, identity, and access management
- Knowledge of network traffic flow
- Knowledge of system and application security threats and vulnerabilities
- Knowledge of different types of attacks
- Knowledge of ethical hacking principles and techniques
- Knowledge of network protocols
- Ability to conduct vulnerability scans and identify security system vulnerabilities
- Ability to assess the strength of security systems and designs
- Ability to use network analysis tools to detect vulnerabilities
- Ability to review logs to find evidence of past intrusions
- Ability to conduct application vulnerability assessments
- Ability to gain insights about an organization's threat environment
- Ability to identify systemic security issues based on vulnerability and configuration data analysis
- Ability to provide meaningful insights about an organization's threat environment to enhance its risk management approach
- Ability to apply cybersecurity and privacy principles to meet organizational requirements (related to confidentiality, integrity, availability, authentication, non-repudiation)
- Medical plan options with UnitedHealthcare
- Dental Insurance
- Long-term and Short-term Disability Insurance
- Life Insurance
- AD&D Insurance
- Generous 401(k) Match
-
Vulnerability Analyst
3 weeks ago
Techcella Washington, United StatesCompany Description · Techcella is a niche organization providing our business partners with unparalleled service and delivery of projects in a short period of time. Our specialized staff has extensive experience in several domains in the market, including Federal Government, tel ...
-
Vulnerability Analyst
2 weeks ago
Techcella Washington, United StatesCompany Description · Techcella is a niche organization providing our business partners with unparalleled service and delivery of projects in a short period of time. Our specialized staff has extensive experience in several domains in the market, including Federal Government, tel ...
-
Vulnerability Analyst
3 weeks ago
Insight Global Washington, United StatesJob Description · Technology Services serves the client by providing access to high quality, state-of-the-art, computing, communications and information resources through the Internet, local and wide area networks, databases and libraries, and by supporting the management informa ...
-
Senior Vulnerability Analyst
2 weeks ago
Science Applications International Corporation Washington, United StatesAs a Cybersecurity Analyst, you will play a crucial role in supporting IT Security management by conducting technical review, analysis, reporting, and working with technical solutions in the areas of vulnerability management, issue analysis, and resp Vulnerability, Security Analy ...
-
Senior Vulnerability Analyst
3 weeks ago
SAIC Washington, United StatesSAIC is seeking a highly skilled · Senior Vulnerability Analyst · with a strong technical background to join our team in support of a critical US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for Patch and Vuln ...
-
Senior Vulnerability Analyst
2 weeks ago
SAIC Washington, United States· SAIC is seeking a highly skilled Senior Vulnerability Analyst with a strong technical background to join our team in support of a critical US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for Patch and Vulnera ...
-
Senior Vulnerability Analyst
2 weeks ago
SAIC Washington, United States· SAIC is seeking a highly skilled Senior Vulnerability Analyst with a strong technical background to join our team in support of a critical US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for Patch and Vulnera ...
-
Cyber Vulnerability Analyst
2 weeks ago
Global Engineering & Technology, Inc. Washington, United StatesTHIS IS A HYBRID-REMOTE POSITION. · In its majority, work will be performed remotely, from the employee's place of residence. · Pre-planned travel to Oak Ridge, Tennessee, or Amarillo, Texas, for on-site interaction, support, and inspections will be required up to 15% of the ti ...
-
Senior Vulnerability Analyst
3 weeks ago
Gilder Search Group Washington, United StatesSummit Technologies, Inc. · is looking for a · Senior Vulnerability Analyst . You will support IT Security management by conducting technical reviews, analyzing, reporting, and utilizing technical solutions in the areas of vulnerability management, issue analysis, response deve ...
-
Senior Vulnerability Analyst
1 week ago
Summit Technologies Washington, United StatesSummit Technologies, Inc. is looking for a Senior Vulnerability Analyst. You will support IT Security management by conducting technical reviews, analyzing, reporting, and utilizing technical solutions in the areas of vulnerability management, issue analysis, response development ...
-
Cyber Vulnerability Analyst
6 days ago
Information Protection Solutions Washington, United StatesRESPONSIBILITY · Analyze and manage risk management issues by identifying, measuring, and making decisions on operational or enterprise risks for an organization. · Conduct web application and code testing for all systems and applications, and open source dependencies, providing ...
-
senior cybersecurity vulnerability analyst
3 weeks ago
Bamboo Solutions Washington, United StatesWe are seeking a highly skilled Vulnerability Analyst with a strong technical background to join our team in support of a critical US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for Patch and Vulnerability Mana ...
-
Senior Vulnerability Management Analyst
3 weeks ago
MindPoint Group Washington, United StatesCareer Opportunities with MindPoint Group · A great place to work. · Current job opportunities are posted here as they become available. · Text code VMAP to to apply · Since 2009, MindPoint Group has been the cybersecurity firm of choice for the most security-conscious US federal ...
-
Space System Vulnerability Policy Analyst
6 days ago
MYMIC Washington, United StatesSpace Systems Vulnerability Policy Analyst · Clearance: Must hold Top Secret clearance with SCI eligibility. · Location: Pentagon · PROSOFT is seeking a Space Systems Vulnerability Policy Analyst to support the development of space systems vulnerability mitigation plans, space co ...
-
Tik Tok Washington, United StatesResponsibilities · TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok has global offices including Los Angeles, New York, London, Paris, Berlin, Dubai, Singapore, Jakarta, Seoul and Tokyo. · Why Join UsCreat ...
-
Experis Washington, United StatesAs a Security Vulnerability Analyst specializing in Vulnerability Mitigation and Intelligence, you will be responsible for providing tailored mitigation strategies, improvement plans, and actionable insights based on vulnerabilities identified through various open and closed sour ...
-
Arcetyp LLC Washington, United StatesArcetyp LLC is a growing small business that provides a broad range of consulting services to US Federal Government, US Military, and Commercial clients. Services include Management & IT Consulting, Program & Project Management, and Professional & Admin Services. We are recruitin ...
-
SOC Analyst III
2 weeks ago
Foxhole Technology Washington, United StatesTitle: SOC ANALYST III · Location: Washington, DC (Onsite) · Salary: Based on experience, education and certification · Clearance: Public Trust (6C) · Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense agencies. A recogn ...
-
Cyber Security Analyst
3 weeks ago
MSR Collective Washington, United StatesDetails: · Cyber Security Analyst with TS/SCI Clearance and Polygraph · We are actively seeking a skilled and dedicated Cyber Security Analyst with an active TS/SCI clearance and polygraph to join our dynamic team. As a Cyber Security Analyst, you will play a vital role in coor ...
-
SOC Analyst with Security Clearance
1 week ago
Zachary Piper Solutions Washington, United StatesZachary Piper Solutions is seeking a Security Operations Analyst join a Contract-to-Hire job opportunity in Washington DC. This is an onsite position with the Treasury Department that offers conversion to a hybrid schedule (3 days onsite) once comfortable in the role. The Securit ...
Cyber Vulnerability Analyst - Washington, United States - Global Engineering & Technology, Inc.
Description
THIS IS A HYBRID-REMOTE POSITION.
In its majority, work will be performed remotely, from the employee's place of residence. Pre-planned travel to Oak Ridge, Tennessee, or Amarillo, Texas, for on-site interaction, support, and inspections will be required up to 15% of the time.
This position requires a current DOE Q or DoD Top Secret / SCI security clearance.
Global Engineering and Technology (GET) is seeking qualified applicants for Vulnerability Analyst in support of the United States Department of Energy's cybersecurity program. This is a highly compensated, high-responsibility technical security position that is central to our mission's success. The Vulnerability Analyst performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy.
COMPENSATION RANGE: $130,000-140,000/year (depending on qualifications and experience)
Duties & Responsibilities:
Requirements
Security Clearance:
This position requires a current DOE Q or DoD Top Secret / SCI security clearance.
Required Education and Experience (as demonstrated by technical expertise and certification, where applicable):
Required Knowledge, Skillset, and Abilities (KSAs):
This position requires senior-level experience as a Vulnerability Analyst.
Benefits
Benefits include:
All benefits are effective on day one of employment.
Global Engineering & Technology, Inc. is an equal opportunity employer and does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in provision of employment opportunities and benefits.