23 days old

Security Vulnerability Analyst

General Dynamics Information Technology
Durham, NC 27701
  • Job Code
    9111_RQ76855-1

Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Other

Clearance Level Must Be Able to Obtain:

None

Suitability:

Agency Specific

Public Trust/Other Required:

Other

Job Family:

Information Security

Job Description:

Investigates and analyzes all vulnerability activities related to Cisco devices within the network environment or enclave. Collects and analyzes data from a variety of computer network defense tools and teams to analyze vulnerabilities that may impact the agencies switching and routing operational equipment/environment. Provides operations support for persistent monitoring of all designated network devices, enclaves, and systems. Interprets, analyzes, and reports applicable vulnerabilities in accordance with computer network directives, including researching potential vulnerabilities, working with other sin the department to on mitigation strategies, and exception reporting of discovered vulnerabilities. Evaluates system security configurations. Evaluates findings, suggests and tracks vulnerabilities to their mitigated conclusion.

Required Qualifications

  • Evaluate, recommend, and/or assist in the implementation of solutions to current or potential security threats as they relate to the agencies routing and switching environment
  • Working knowledge of Cisco operating systems, networking fundamentals, vulnerability scanning tools and practices.
  • Prior experience supporting vulnerability analysis, to include security threat analysis
  • Working knowledge of Tenable, Nessus and Cisco systems
  • Ability to provide in-depth holistic analysis of a technical threat to critical infrastructure by leveraging various data sources.
  • Demonstrated on-the-job experience collaborating with multiple teams to accomplish mission objectives
  • A self-starter with an investigative mindset who can multi-task, think outside the box, and is detail oriented
  • A demonstrated ability to learn new and technically complex topics quickly and communicate in easy to understand terms.
  • Conducting technical vulnerability research into equipment and capabilities being employed and considered for use across the agency
  • Providing professional advice to various audiences within the agency including decision makers, technical architects and engineers
  • Mentoring, educating and training of security engineers and LAN/WAN engineering teams
  • Excellent oral, written and interpersonal skills
  • Works well under pressure
  • Solid background in addressing network vulnerabilities across various platforms and teams
  • Experience writing POA&Ms and using mitigation tracking tools
  • Experience and solid familiarity of FISMA & NIST 800-53 guidelines
  • Collating data from multiple sources, to include anomalies identified by processes and teams outside the organization.
  • Working closely with agency partners to identify current threats and collect additional information regarding the threats identified
  • Conducting in-depth reviews of critical infrastructure devices
  • Maintaining and extending relationships across the agency so that mission performance is enhanced
  • Ensure proactive compliance of IT security systems, processes and controls with agencies information security program, security policies and regulatory compliance guidelines
  • Research and recommend best practices to secure the agencies Cisco routing and switching environment
  • Recommend risk mitigation controls and procedures based on vulnerability, risk and security review/assessment reports
  • Developing and sustaining strategic internal and external relationships
  • Other duties as assigned
  • Security Clearance Level: Public Trust

PREFERRED QUALIFICATIONS:

  • Bachelors degree in technology, engineering, business, or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience with a minimum of 4 years related experience or relevant combination of education and experience as a Security Analyst or in a role with similar responsibilities.
  • Knowledge and/or experience with EPA Network.
  • Compile and track vulnerabilities and mitigation results to quantify program effectiveness.
  • Develop risk-based mitigation procedures for these scanned network devices.
  • An understanding of current infrastructure, business processes, policy is key to producing accurate risk assessments
  • Strong analytic, writing, and briefing skills; a demonstrated ability to distill information into documented and sourced products, communicate complex technical topics to a non-technical audience, and distill complex issues into succinct problems, impact and recommended solutions
  • Background or expertise in at least two of the following topics: General security, cyber security, information technology, or insider threats.
  • Professional security certifications (CISSP, CISM, etc.)
  • Knowledge of the agency cable system and core network devices

Scheduled Weekly Hours:

40

Travel Required:

10-25%

Telecommuting Options:

Some Telecommuting Allowed

Work Location:

USA NC Durham

Additional Work Locations:

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.





Posted: 2021-04-20 Expires: 2021-05-19
Sponsored by:
ADP Logo
Sponsored by:
Bank of America Logo

Featured Jobs[ View All ]

Featured Employers

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Security Vulnerability Analyst

General Dynamics Information Technology
Durham, NC 27701

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast