Title:  Specialist, Vulnerability Management

Job Title: Specialist, Vulnerability Management
Job Code: 35448
Job Location: Palm Bay, Florida
Job Schedule: 9/80: Employees work 9 out of every 14 days – totaling 80 hours worked, and have every other Friday off

Job Description:

Step into a high-impact role within the Vulnerability Management Team (VMT), where you'll help protect mission-critical systems against emerging threats. Working closely with the VMT Lead, you'll drive hands-on security scanning and remediation efforts to ensure our systems remain hardened and secure. In this position, you'll coordinate with system points of contact to schedule and execute compulsory scans of assigned information systems, including vulnerability assessments, compliance checks, network detection and mapping, and controlled interface evaluations.

The ideal candidate brings expertise in various vulnerability assessment tools such as Rapid7 Nexpose, NMAP, or similar security platforms, with the ability to create and interpret comprehensive scan reports and recommend prioritized remediation plans. Scripting and parsing tool development skills in BASH or Python are highly preferred. Your responsibilities will extend to collaborating with ISSMs, ISSEs, and System Administrators on POA&M items, analyzing system scan metrics and presenting findings to stakeholders, and assisting with security incident investigations including data spills, data integrity infractions, and malicious events. As needed, you'll also author and deliver security education and training tailored to diverse audiences across the organization.

Essential Functions:

• Configure scan engines for vulnerability, network detection and mapping, and controlled interface scans
• Execute scans, generate reports, interpret results, and recommend remediation plans
• Provide any requested Assessment & Authorization (A&A) documentation of assigned systems as applicable
• Execute Continuous Monitoring Plans
• Interface with system managers and Information Technology (IT) personnel to track and resolve identified vulnerabilities
• Create, maintain, and update documentation
• Develop new concepts or standards which make significant and impactful improvements to processes, systems, solutions, or products

Qualifications:

• Bachelor’s Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 8 years of prior related experience.
• Active Top Secret security clearance with SCI
• Current counterintelligence (CI) polygraph investigation
• Security+ CE or equivalent certification
  
  

Preferred Additional Skills:

• Bachelor's or Graduate degree in Cybersecurity or a related discipline from an accredited college is preferred
• 4 years of prior relevant experience to include experience with networking equipment; experience running vulnerability scans and interpreting results (e.g. Nessus, Assured Compliance Assessment Solution [ACAS], Rapid7 Nexpose, NMAP, etc.
• Willingness to submit to a Full Scope Polygraph
• Certified Information System Security Professional (ISC2 CISSP) or equivalent certification
• Experience with project management tools such as Jira and Confluence
• Experience developing, managing, and providing evidence to close POA&Ms associated with the A&A and project management processes
• Experience with diverse workstation and server operating systems, including, but not limited to, Microsoft and Linux
• Exceptional verbal, written, interpersonal and presentation skills, customer relationship building skills, analytical skills
• Ability to work in a team environment
• Ability to script and develop parsing tools in BASH or Python
• Proven experience with prompt engineering

#LI-FS1