United States onlyQualifications:
- Bachelor’s degree in Information Technology, Computer Science, or other related fields
- Active Top Secret clearance
- Must have high focus on Vulnerability Management with one of more areas of deep expertise
- Must be experienced in utilizing various system’s security tools such as SIEM and running security scans.
- They must have experience using CSAM or other RMF approved system of record
- 2+ years of experience and hold at least one of the following certifications: CompTIA Security+, Certified Ethical Hacker (CEH), or Certified Information Systems Security Professional (CISSP).
- Serve as a technical specialist with a strong focus on vulnerability management.
- Perform regular security scans and assessments to identify potential weaknesses.
- Utilize vulnerability management tools to detect, analyze, and track security flaws across systems.
- Clearly articulate security risks to both technical and non-technical audiences.
- Create and deliver briefings and presentations detailing the vulnerability status of network systems to system owners and key stakeholders.
- Recommend mitigation strategies and assist in the prioritization of remediation actions.
- Operate and maintain Security Information and Event Management (SIEM) systems and related security monitoring tools.
- Use tools within the Cyber Security Assessment and Management (CSAM) platform or other RMF-approved systems of record to document and track vulnerabilities.
- Prepare detailed reports and presentations summarizing security scan results and risk analysis.
- Support development of Plans of Action and Milestones (POA&Ms) based on identified vulnerabilities and assist with ongoing tracking of remediation efforts.
- Ensure that vulnerability management and security monitoring efforts align with DOJ, Federal Information Security Modernization Act (FISMA), and NIST 800-53 Rev 5 standards.
- Support the overall mission of Federal Prisons Industries (FPI) by maintaining secure and resilient IT environments.
