Posted today
Top Secret
Unspecified
Unspecified
IT - Security
Reston, VA (On-Site/Office)
OVERVIEW:
We are seeking an Information Security Analyst to join our team. This role will focus on performing various vulnerability management duties, including ACAS/Nessus vulnerability and scanning support, tracking and dissemination of vulnerability assessments, and the identification and reporting of network and system vulnerabilities, security events, and adverse cyber related activity identified through indicators. As an Information Security Analyst, will play a key role in managing all aspects of infrastructure systems used to manage CND-SP networks & resources, and will assess threats to the environment, to include patch repository maintenance, supporting and performing inspections to ensure compliance to DoD 8530 Standards, and participating in risk assessment during the C&A (certification and accreditation) process, as well as, supporting security certification tests and evaluation of assets.
REQUIRED QUALIFICATIONS:
DESIRED QUALIFICATIONS:
CLEARANCE:
We are seeking an Information Security Analyst to join our team. This role will focus on performing various vulnerability management duties, including ACAS/Nessus vulnerability and scanning support, tracking and dissemination of vulnerability assessments, and the identification and reporting of network and system vulnerabilities, security events, and adverse cyber related activity identified through indicators. As an Information Security Analyst, will play a key role in managing all aspects of infrastructure systems used to manage CND-SP networks & resources, and will assess threats to the environment, to include patch repository maintenance, supporting and performing inspections to ensure compliance to DoD 8530 Standards, and participating in risk assessment during the C&A (certification and accreditation) process, as well as, supporting security certification tests and evaluation of assets.
REQUIRED QUALIFICATIONS:
- Education & Years of Experience: Bachelor's degree and 8 years of experience related to specific functional area.
- Certifications: Currently hold, or be able to attain a CompTIA CYSA+ or equivalent certification
- Experience and knowledge on:
- Experience with vulnerability scanning tools to include and understanding of Vulnerability Management System and Continuous Monitoring and Risk Scoring.
- Provide technical support to customers involving a wide range of software, hardware, and DoD specific applications with respect to the ACAS solution
- Supporting vulnerability management program requirements including maintaining patch repository, issuing alerts and bulletins, and tracking compliance
- Ability to analyze the customer's needs and identify security requirements / solutions.
- Reviewing reporting, automation, and visualization systems to provide situational awareness and making recommendations to improve vulnerability management capabilities
- Coordinating access to systems and approvals for scanning activities
- Conducting ad hoc testing to assist with development activities or vulnerability remediation
- Reviewing and testing system security controls (managerial, operational, and technical) to determine adequacy against federal requirements (e.g., NIST SP 800-53) and mission context
- Provide advanced troubleshooting and resolution of security products such as HBSS, Nessus Agent (ACAS)
- Creating, maintaining, and updating knowledge management and technical documentation of operational processes and findings
- Demonstrated initiative (i.e. initiate appropriate action without being directed) and ability to work independently.
- Providing input on adequacy of security designs and architectures
DESIRED QUALIFICATIONS:
- Security certifications: CCNA Security, SSCP, or equivalent certification
- Cloud certifications
CLEARANCE:
- Top Secret minimum
group id: 90943786
N
