Endpoint Vulnerability Management SME/Technical Lead - NIH

Overview

cFocus Software is seeking an Endpoint Vulnerability Management Subject-Matter Expert (SME) / Technical Lead to provide advanced technical leadership and expertise in endpoint vulnerability assessment and management. The SME/Technical Lead will operate and optimize endpoint vulnerability assessment tools, oversee scanning and analysis, and develop automated reporting and SIEM-integrated dashboards to enhance the organization's security posture. This role requires deep technical knowledge of multiple operating environments, cloud and containerized platforms, and federal information systems, as well as experience in risk analysis and remediation coordination.

This is a full-time position that may require on-site support at federal agency locations in the Washington, D.C. metro area. Some telework flexibility may be available depending on mission requirements. Must be able to obtain and maintain a Public Trust or higher-level security clearance as required by the agency.

Responsibilities

The Endpoint Vulnerability Management SME / Technical Lead shall perform duties that include, but are not limited to:

• Lead endpoint vulnerability management operations, ensuring comprehensive coverage across enterprise endpoints and systems.
• Operate endpoint vulnerability assessment tools, leveraging both agent- and network-based scanning methodologies.
• Analyze and interpret scan results to identify trends, systemic issues, and root causes of vulnerabilities.
• Integrate vulnerability management use cases into the organization’s Security Information and Event Management (SIEM) solution.
• Develop and maintain automated and manual reporting, dashboards, and alerts to communicate vulnerability status, remediation progress, and compliance posture.
• Secure and manage endpoints across diverse environments, including cloud Infrastructure-as-a-Service (IaaS), containerized environments, and mobile, database, and enterprise platforms.
• Implement security controls for multiple operating systems such as Windows, macOS, Linux, Unix (including Red Hat Enterprise Linux, Oracle Enterprise Linux, and Solaris).
• Support the protection and compliance of federal business systems supporting financial management, budget, procurement, travel, property, HR/payroll, and data warehousing functions.
• Apply cybersecurity principles to secure clinical and/or scientific instrumentation, as well as Operational Technology (OT) systems (preferred).
• Conduct risk analyses and provide mitigation recommendations based on vulnerability data and threat intelligence.
• Collaborate with cybersecurity engineering, SOC, and compliance teams to prioritize remediation efforts and strengthen endpoint defenses.
• Develop and document standard operating procedures (SOPs) and contribute to continuous process improvement.

Required Qualifications

• Demonstrable credentials reflecting knowledge, skills, and experience operating endpoint vulnerability assessment tools and analyzing and interpreting results.
• Experience with agent- and network-based vulnerability scanning methodologies.
• Experience integrating vulnerability management use cases into SIEM platforms.
• Experience in content development (manual and automated reporting, dashboards, alerts) for systemic issue identification, root cause analysis, vulnerability analysis, remediation status, and compliance with regulations and directives.
• Experience securing cloud IaaS and containerized environments, mobile platforms, database platforms, Windows and macOS operating systems, and Linux/Unix systems (e.g., Red Hat Enterprise Linux, Oracle Enterprise Linux, and Solaris).
• Experience securing federal business systems supporting financial management, budget, procurement, travel, property, HR/payroll, and data warehousing functions.
• Experience securing clinical and/or scientific instrumentation (OT experience preferred).
• Experience performing risk analysis to identify and address potential vulnerabilities and threats.

Preferred Qualifications

• Experience supporting DHS or other federal agencies in vulnerability management or endpoint protection roles.
• Familiarity with tools such as Tenable, Qualys, Rapid7, or similar endpoint scanning technologies.
• Experience developing and maintaining SIEM dashboards and vulnerability analytics for federal compliance frameworks (e.g., NIST SP 800-53, FISMA, FedRAMP).
• Strong scripting and automation skills (e.g., PowerShell, Python) for vulnerability data correlation and remediation tracking.
• Demonstrated leadership in endpoint protection, patch management, and continuous monitoring programs.

About cFocus Software

cFocus Software Incorporated provides cybersecurity, cloud, and enterprise IT services to the federal government. Our team of experts delivers innovative solutions that protect critical assets and enable mission success.

Equal Employment Opportunity Statement

cFocus Software Incorporated is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.