Mid Vulnerability Assessment Analyst (Secret)

Position Title: Mid Vulnerability Assessment Analyst
Location: Redstone Arsenal, Huntsville, AL
Relocation Assistance: None available at this time
Remote/Telework: NO - Not available for this position
Clearance Required: DoD Secret
Work Schedule: Day shift
Travel: Up to 10% of the time

Description of Duties
The Mid Vulnerability Assessment Analyst supports the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract.

The candidate will:

• Perform Defensive Cyber Operations (DCO) and Cyber Security Service Provider (CSSP) duties outlined in Evaluator Scoring Metrics (ESM)
• Perform cybersecurity duties on customer networks, proactively and reactively, to improve enterprise-wide security posture
• Perform and analyze vulnerability scans utilizing Prisma and the Assured Compliance Assessment Solution (ACAS/Nessus) scanning tool
• Analyze correlated asset, threat, and vulnerability data against known adversary exploits and techniques to determine impact and improve network defensive posture
• Support the development, establishment, review, and update of DCO procedures, processes, manuals, and other documentation
• Support Anti-Malware programs, forward alerts and warnings to customers, respond to customer malware reports, and assist in implementing protective and anti-malware measures
• Assist with host-based security across the enterprise utilizing DoD Endpoint Security Solutions (ESS), to include antimalware, host-based intrusion protection systems, data loss prevention, and rogue system detection
• Generate vulnerability assessment reports for customers and escalate for further review
• Create, update, and manage queries and dashboards pertaining to Endpoint Security Solutions (ESS), ACAS, and related security tools
• Support Incident Response across the enterprise in accordance with DoD regulations and instructions
• Lead cyber events and incident investigations from start to conclusion, including data gathering, analysis, and reporting
• Support DCO operations by mentoring and training junior DCO analysts

The successful candidate will:

• Have experience with most Microsoft Office applications, including Word, Excel, PowerPoint, and Visio
• Be able to multi-task and prioritize various projects and assignments in a dynamic work environment to meet scheduled and unscheduled customer requests
• Be willing to travel up to 25% of the time
• Be willing to support rotating shifts in a 24/7 operational environment and respond quickly to emergencies as needed

Minimum Qualifications

• Must be a U.S. Citizen
• Must have an active Secret Security Clearance
• Must have 6, or more, years of general (full-time) work experience
• May be reduced with completion of advanced education
• Must have 4 years of combined experience performing vulnerability scans or analysis using enterprise scanning tools, practical experience with cybersecurity frameworks or conducting risk assessments, and experience performing the full life-cycle of incident response and enterprise-level monitoring
• Must have 1 year of experience in management or leadership in a team environment
• Must have a current DoD 8570.01-M IAT Level II certification with Continuing Education (CE), such as CySA+, GICSP, GSEC, Security+ CE, or SSCP
• Must have a DoD 8570.01-M CSSP Auditor certification, such as CEH or CySA+

Desired Qualifications

• Have a bachelor's degree, or higher, in Cybersecurity, Computer Science, or a related field
• Have experience with security analysis and solutions in a WAN and LAN environment, including routers, switches, network devices, and operating systems such as Windows and Linux
• Have experience with Security Operations Center (SOC) or DCO tools and applications such as firewalls, intrusion detection systems, intrusion prevention systems, network security managers, Bluecoat, Barracuda, or similar technologies
• Have experience performing security compliance scans across a WAN, with ACAS/Nessus preferred
• Have a background in configuration, troubleshooting, and deployment of host-based security solutions, with ESS preferred
• Be able to mentor and train personnel in an evolving, high-paced environment
• Be familiar with DoD Security Operations Centers (SOC), also known as CSSP
• Be familiar with DCO and Cybersecurity Service Provider (CSSP) guiding security policies and procedures
• Have an active DoD Top Secret clearance

Compensation
Salary Range: $110,000 - $128,000 annually; depending on experience, education, and any certifications that are directly related to the position.

Application Instructions

• Resumes must be submitted in month/year format to be considered.
• Candidates must be fully truthful in their application; dishonesty or misrepresentation may result in disqualification.
• Only U.S. citizens with an active DoD Secret clearance will be considered.
• Candidates must list experience with specific tools and technologies used in this role, including ACAS/Nessus, Prisma, Endpoint Security Solutions (ESS), DCO/CSSP operations, incident response, and cybersecurity assessment tools, to be considered.

About Aegis Aerospace

We are a woman-owned space and technology company headquartered in Houston, TX. Our primary objective is to support the Department of Defense and NASA in achieving their missions to defend the security of our country, reach new heights and to discover the unknown. We employ some of the brightest, most experienced engineering and technology experts in the U.S.

To learn more about Aegis Aerospace, visit our website at www.aegisaero.com

Equal Opportunity Employer / Protected Veteran / Disability