SENIOR CYBERSECURITY VULNERABILITY ANALYST

Washington, DC

Full Time

SPX

Experienced

We are seeking a highly skilled Vulnerability Analyst with a strong technical background to join our team in support of a critical US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for Patch and Vulnerability Management, contributing to the security and integrity of vital information systems.

Clearance: Must be able to attain Public Trust
Potential for Remote Work: Hybrid Remote, 2 days a week onsite in Washington, DC

Job Description:
As a Cybersecurity Analyst, you will play a crucial role in supporting IT Security management by conducting technical review, analysis, reporting, and working with technical solutions in the areas of vulnerability management, issue analysis, and response development and execution. You will work closely with various IT systems and teams to ensure compliance with security policies and procedures, focusing on maintaining a strong security posture for our client.

Key Responsibilities:

Lead and manage technical projects with a focus on analytics and security.
Serve as a Subject Matter Expert (SME) in web application scanning and device scanning.
Utilize tools like Nessus, Security Center, Tenable.IO, and Qualys WAS for vulnerability management.
Collaborate with cross-functional teams to ensure project success.
Leverage ServiceNow for incident management and tracking.
Utilize SharePoint for documentation and collaboration.
Engage with Jira for issue tracking and resolution.
Review and create technical documentation, reports, and policies.
Oversee quality assurance processes related to analytics and security documentation.

Education & Experience:

Bachelor's degree in a relevant field such as Computer Science, Information Security, or Data Analytics.
Over 7 years of experience, with a strong background in analytics and security.
Proficiency in project management methodologies and tools.
Strong expertise in web application scanning and device scanning.
Proficiency in Nessus, Security Center, Tenable.IO, and Qualys WAS.
Proficiency in Excel data analytics.
Excellent technical writing skills with a proven track record in creating and reviewing technical documentation.
Strong understanding of quality assurance and security best practices.
Relevant certifications such as PMP, CISSP, CISM, or related certifications are a plus.
Effective communication, leadership, and presentation skills.
Strong problem-solving and analytical abilities.
A commitment to staying current with industry trends and security developments.

Desired:

Project Management / Scrum
PowerShell
Excel (Advanced Operations)
Azure DevOps
SQL Server Management Studio
Zero trust architectures

We offer:

Competitive salary based on experience
Profit sharing distributed twice a year
15 days of paid time off and 10 paid holidays per year
401(k) with employer matching
Health and dental benefits
Opportunity to work with other talented technical professionals

SharePointXperts is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected Veteran status.

SharePointXperts participates in E-Verify. Click the following links for important information about our participation in this program and your rights.

https://www.e-verify.gov/sites/default/files/everify/posters/IER_RightToWorkPoster%20Eng_Es.pdf

https://www.e-verify.gov/sites/default/files/everify/posters/EVerifyParticipationPoster.pdf

Apply for this position

Required*

Apply with Indeed

First Name*

Last Name*

Email Address*

Phone*

Address*

Resume*

We've received your resume. Click here to update it.

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

Cover Letter*

Who referred you to this position? Enter their first and last name here.

College or University*

Desired salary*

Earliest start date?

In 150 characters or fewer, tell us what makes you unique. Try to be creative and say something that will catch our eye!*

150

References: Please enter names and contact information:

Are you willing to work on site 2 days a week in Washington, DC? **

How many years experience do you have working directly with Cybersecurity technology?*

How many years experience do you have working directly with Security controls in a technical environment with a variety of IT systems?*

How many years experience do you have supporting a technology infrastructure team, including areas like Networking, Windows, Azure, Unix/Linux, etc.?*

List your security certifications such as CISSP, CISM, and Security+.*

Please rate your experience from 1 to 5 on the following skills (1 being minimal or no experience, 5 being extensive experience).

National Institute of Standards and Technology (NIST) Risk Management and Cybersecurity Framework*

FISMA, NIST 800-53, general IT control implementation, assessment, and maintenance process*

Governance, Risk and Compliance (GRC) frameworks and tools, such as CSAM*

IT security controls, tools, and concepts*

The following questions are entirely optional.

Invitation for Job Applicants to Self-Identify as a U.S. Veteran

A “disabled veteran” is one of the following:
- a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
- a person who was discharged or released from active duty because of a service-connected disability.
A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Veteran status

I IDENTIFY AS ONE OR MORE OF THE CLASSIFICATIONS OF PROTECTED VETERAN LISTED ABOVE
I AM NOT A PROTECTED VETERAN
I DON’T WISH TO ANSWER

Human Check*

Submit Application

Welcome!

Our Company Culture

SENIOR CYBERSECURITY VULNERABILITY ANALYST

Apply for this position