Vulnerability Management Specialist

Vulnerability Management Specialist will perform the following:

• Assessments of applications, OS and networks within the network environment or enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, and/or local policy
• Review the discovery and documentation of all assets
• Review the prioritization of assets
  Review and/or make configuration changes to the vulnerability/compliance scan,
• Analyze scan results
• Coordinate/escalate vulnerability remediation efforts with technical and functional teams across the program
• Creating of scanning custom/scripts
• Providing RMF and audit support
• Reviewing and tracking submission of Plan of Actions and Milestones
• Reviewing and tracking security exceptions documentations
• Executing maintenance of security tools, and escalating issues to vendors when necessary.
• Vulnerability Management Specialist will have at least five years of working knowledge and hands-on experience with five or more of the following tools: BurpSuite, SonarQube, OWASP/Maven, Fortify, Tenable, STIG Viewer, AWS Security Hub, AWS Inspector, ePO, ServiceNow, Jira, ADO, eMASS or equivalent GRC Tools.

Minimum Qualifications

• Bachelor’s Degree in Computer Science, Engineering, or other Engineering or Technical discipline and a minimum of 5 years of working knowledge and hands-on equivalent relevant experience.
• Candidates must have a Security+ certification or similar
• Candidates must have an active secret security clearance.
• Position requires on-site work in Alexandria VA 2-3 days/week.

Other Job Specific Skills

• Working knowledge and hands-on experience with the following:
  • BurpSuite
  • SonarQube
  • OWASP/Maven
  • Fortify, Tenable
  • STIG Viewer
  • AWS Security Hub
  • AWS Inspector
  • ePO, ServiceNow
  • Jira
  • ADO
  • eMASS or equivalent GRC Tools

#CJPost