- Perform vulnerability management scans across customer systems. Continually optimize vulnerability scan frequencies, ensuring they are in sync with customer remediation cycles.
- Manage vulnerability scans to ensure all infrastructure is being covered via network based scanning and local based scanning (agent)
- Understanding of network routing to ensure network scans will run properly based on scanner placement
- Ability to deploy necessary scanning tools to customer environments and/or customer endpoints
- Conduct research on the latest vulnerabilities and exploits. Implement a risk-based vulnerability approach that strategizes and enables efforts to treat vulnerabilities that are relevant, exploitable, and possess significant business risk.
- Extensive experience in working with organized patching teams to identify, assess and remediate vulnerabilities is required
- Extensive experience in working with ongoing process improvements to a large-scale vulnerability management program is required
- Information security subject matter expert
- Windows and Linux System Engineering/administration background
- Identify and understand vulnerabilities in systems, applications, and networks.
- Conduct custom vulnerability assessments.
- Develop effective strategies to tackle security threats based on varying customer environments.
- Ability to research and engage in creative solutions for out of box problems
- Conduct network security audits and scanning on a predetermined basis.
- Use automated tools (e.g. Tenable) to pinpoint vulnerabilities and reduce time-consuming tasks.
- Use manual validation techniques and methods to gain a better understanding of the environment and reduce false positives (e.g. Nmap)
- Ability to write vulnerability reports and discuss in depth with customers how and why they're effected
- Prepare and present operational and executive metrics that measure performance, prompt actions, and convey the value delivered by the vulnerability management capability
- Bachelor's degree; preferably in Computer Science, Information Security, or a related field.
- Knowledge of multiple Vulnerability Management platforms (Qualys, Tenable, Rapid 7, etc.)
- Knowledge of multiple Patch Management systems. (SCCM, Jamf, Tanium, etc.)
- Familiar with DevOps tools/methods including tools such as GIT, Ansible, & Jenkins.
- Familiar working in an Agile and Waterfall project methodology.
- Hands on experience with LINUX and Windows administration.
- Security Experience with Cloud Technologies (Azure, AWS, GCP).
- Possess an industry certification, such as Certified Ethical Hacker (CEH), GIAC Web Application Penetration Tester (GWAPT), CompTIA Cybersecurity Analyst (CySA+), GIAC Certified Vulnerability Assessor (GCVA), etc.
- Vendor Certifications: Tenable Certified Nessus Auditor, Rapid7 Nexpose Certified Administrator, Rapid7 Metasploit Pro Certified Specialist, QualysGuard Certified Specialist, etc.
- Prior experience performing vulnerability management within an MSSP.
-
Reverse Engineer/Vulnerability Researcher
3 weeks ago
Parsons Company Herndon, United StatesIn a world of possibilities, pursue one with endless opportunities. Imagine Next · When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplac ...
-
Reverse Engineer/Vulnerability Researcher
4 days ago
Parsons Company Herndon, United StatesIn a world of possibilities, pursue one with endless opportunities. Imagine Next · When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace ...
-
Vulnerability Management Engineer
1 month ago
QData Herndon, United States contractDuties & Responsibilities Expert-level knowledge of leading vulnerability scanning tools (Nessus Qualys Nexpose Netsparker Burp etc.) Utilizing a strong understanding of TCP / IPv4 addressing ports protocols services DNS DHCP NAT PAT subnetting and CIDR. Utilizing knowledge of va ...
-
Vulnerability Management Engineer
3 weeks ago
QData Herndon, United States contractHiHope you are doing good...We have an urgent requirement below please go through Job description and send your updated profile and expected rate ASAP.Please reach me at .comJob Title Vulnerability Management EngineerLocation Herndon VALinkedIn is MandatoryJob DescriptionRequired ...
-
Reverse Engineer/Vulnerability Researcher
3 weeks ago
Parsons Commercial Technology Group Inc. Herndon, United StatesIn a world of possibilities, pursue one with endless opportunities. Imagine Next · When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplac ...
-
Vulnerability Assessment Engineer
16 hours ago
ShorePoint Washington, United StatesJob Description · Job DescriptionSalary: · Who we are: · ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security mode ...
-
Vulnerability and Exploitation Engineer
3 weeks ago
RSEKURE Chantilly, United StatesJob Title: Vulnerability and Exploitation Engineer · Department: Operations - Services · Reports To: RSekure Program Manager · Location: On-site in Chantilly, VA · Schedule: Monday - Friday · Hours: Full-time, 40-hours/week · Pay Type: Salaried, Contract · Clearance Req ...
-
Vulnerability and Exploitation Engineer
3 weeks ago
RSEKURE Chantilly, United StatesJob Description · Job DescriptionJob Title: Vulnerability and Exploitation Engineer · Department: Operations - Services · Reports To: RSekure Program Manager · Location: On-site in Chantilly, VA · Schedule: Monday - Friday · Hours: Full-time, 40-hours/week · Pay Type: Salaried ...
-
Vulnerability and Patch Management Engineer(Mid)
1 month ago
ASRC Federal Reston, United States Full timeJob Description · JOB DESCRIPTION: · The candidate shall have an in-depth knowledge of multi-platform engineering; planning, coordinating, and executing patch management operations, creating baselines and configuring hardened systems. Candidate will have strong experience with ce ...
-
Vulnerability and Exploitation Engineer
3 weeks ago
Rsekure Llc. Chantilly, United StatesJob Title: · Vulnerability and Exploitation Engineer · Department: · Operations - Services · Reports To: · RSekure Program Manager · Location: · On-site in Chantilly, VA · Schedule: · Monday - Friday · Hours: · Full-time, 40-hours/week · Pay Type: · Salaried, Contrac ...
-
Apps and Server Vulnerability Engineer
4 days ago
Serigor Inc. Washington, United StatesJob Description · Job DescriptionJob Title: Apps and Server Vulnerability Engineer (Onsite) · Location: Washington, DC · Duration: 12 Months+ · Job Description: · We are looking for a talented and experienced Application and Server Vulnerability Assessment Engineer to join our te ...
-
Amazon Inc Arlington, United StatesAmazons Devices & Services Security team is seeking an innovative Security Engineer to join our Vulnerability Management Team. In this position, you will focus on detection, assessment, triage and supporting remediation of vulnerabilities. You will w Security Engineer, Security, ...
-
Smoothstack Manassas, United StatesServiceNow Vulnerability Management Subject Matter Expert Hybrid Manassas VA – · ServiceNow Vulnerability Management : · Purpose : Vulnerability Management focuses on identifying, assessing, and mitigating vulnerabilities in an organization's IT infrastructure. · Functionality : ...
-
Reverse Engineer
3 weeks ago
QinetiQ Reston, United StatesCompany Overview · We are a world-class team of professionals who deliver next generation technology and products in robotic and autonomous platforms, ground, soldier, and maritime systems in 50+ locations world-wide. Much of our work contributes to innovative research in the fie ...
-
Reverse Engineer
6 days ago
QinetiQ Reston, United StatesCompany Overview · We are a world-class team of professionals who deliver next generation technology and products in robotic and autonomous platforms, ground, soldier, and maritime systems in 50+ locations world-wide. Much of our work contributes to innovative research in the fie ...
-
Cyber Security Design Specialist
3 weeks ago
SAP Reston, United StatesRequisition ID: 391188 · Work Area: Information Technology · Expected Travel: 0% · Career Status: Professional · Employment Type: Regular Full Time · Career Level: T2 · Additional Locations: · ORIGINAL POSTING DATE: March 25, 2024 · Location: Reston, VA · Purpose and Objective: ...
-
ASRC Federal Washington, United StatesASRC FEDERAL Broadleaf Division is seeking a Vulnerability and Patch Management Engineer for our contract located at the Pentagon. JOB DESCRIPTION : * The candidate shall have an in-depth knowledge of multi-platform engineering; planning, coordinating, and executing patch managem ...
-
Sr. Vulnerability Analyst
1 week ago
ManTech Reston, United States Full timeSecure our Nation, Ignite your Future · Your Growth, ManTech's Promise, OUR Mission. Continue to Secure the Future. Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. AtManTech International Corporation, yo ...
-
Senior DevSecOps Engineer
22 hours ago
ManTech Fairfax, United States Full timeSecure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International, you'll help protect our national security while working on innovative projects that offer ...
-
Cyber Security
3 weeks ago
Droisys Reston, United StatesDroisys is an innovation technology company focused on helping companies accelerate their digital initiatives from strategy and planning through execution. We leverage deep technical expertise, Agile methodologies, and data-driven intelligence to modernize systems of engagement a ...
Lead Vulnerability Engineer - Fairfax, United States - ECS
Description
ECS is seeking a Lead Vulnerability Engineer to work in our Fairfax, VA office.
Job Description:
As a leading managed cybersecurity services provider, ECS delivers a highly tailored and customized offering to each customer. Our team is responsible for protecting the ECS corporate and customer networks. Our mission is broad, and our team is agile. We will leverage your unique skills to help solve customers' challenges, such as engineering a system to address a technical hurdle, protecting customer data, or consulting on a wide range of security topics. You are empowered to engage and lead across multiple groups and must have the self-sufficiency and focus to work well without constant oversight.
Our Vulnerability Management Engineers support our commercial customers on behalf of the ECS MSP. They are responsible for driving the strategy, evaluation, process, execution, and operations of ECS' Vulnerability Management Program.
Required Responsibilities:
Required Skills:
Desired Skills:
