Vulnerability Information Security Analyst

Job description

**Req ID:** RQ208904
**Type of Requisition:** Regular
**Clearance Level Must Be Able to Obtain:** Top Secret/SCI
**Public Trust/Other Required:** None
**Job Family:** Cyber and IT Risk Management
**Skills:**
Information Security,Security Reviews,Vulnerability Assessments
**Experience:**
3 + years of related experience
**US Citizenship Required:**
Yes

**Job Description:**

Please take this opportunity to join one of GDIT’s fastest long-standing growing programs! US Battlefield Information Collection and Exploitation System eXtended (US BICES-X) is a cutting edge program supporting DoD intelligence information sharing on current and emerging global threats to mission and coalition partners and emerging nations.

With an internationally dispersed team supporting each combatant command, the US BICES-X team is in direct support of the war fighter and their missions.

We are seeking a creative and driven professional with a passion for solving real world issues on a cross-functional, fast paced team.

The Vulnerability Analyst is a strong, self-motivated, solution-oriented individual who will be joining an experienced team to support the implementation and sustainment of ACAS across multiple networks.

We are looking for an experienced, innovative, and enthusiastic analyst to join us in delivering high quality IT systems.

Responsibilities:

+ Conduct and Manage ACAS Vulnerability Scanning, including Tenable.sc, Nessus Agent and Nessus Network Monitor.
+ Analyze policies, configurations, and evaluate compliance with regulations and directives.
+ Maintain knowledge of applicable policies, regulations, and compliance documents specifically related to ACAS.
+ Perform vulnerability assessments and security reviews to identify weaknesses and vulnerabilities within systems that affect the confidentiality, integrity and availability of data.
+ Analyze vulnerability reports and suggest remediation / mitigation plans.
+ Coordinate with cybersecurity administrators to improve security tools for monitoring and increasing coverage of existing tools.
+ Collect, aggregate, synthesize, analyze and report on data from multiple sources and formats.
+ Provide technical support to system owners to propose mitigation and remediation solutions to identified vulnerability and security issues.
+ Leverage enterprise methodologies and patterns.
+ Develop high level system design diagrams and system documentation.
+ Evaluate, analytically and systematically, problems with workflows, organization and planning and develop appropriate corrective actions.
+ Excellent written and verbal communication skills, with a strong attention to detail and superior ability for problem solving.
+ Skilled at directing a small team and executing responsibilities without direct supervision.

**Required Qualifications:**

+ 3+ years of technical experience required.
+ BA/BS required - may substitute additional years of experience
+ A minimum of five (2) years' experience in building, maintaining, and supporting ACAS related technologies: Tenable.sc, Nessus Agent, and Nessus Network Monitor.
+ Experience with data analytics, preferably using Excel.
+ Must possess and maintain a TS/SCI clearance.
+ Must be IAT level II compliant with DoD 8570.1.
+ ITIL V4 Foundation within six months of hire.
+ Must have completed ACAS Operator and Supervisor course within the last three years.
+ May be required to work evening, weekend, and holiday hours as required.

**Preferred Qualifications:**

+ Knowledge of how traffic flows across the network (TCP/IP, OSI, ITIL).
+ Skilled in conducting vulnerability scans and recognizing vulnerabilities in systems.
+ Developing and presenting briefings to senior leadership.

The likely salary range for this position is $91,811 - $96,600.

This is not, however, a guarantee of compensation or salary.

Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.

To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.

To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.

We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT.

A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community.

Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation.

We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development.

Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Required Skill Profession

Other General