Peraton ยท 6 hours ago
Vulnerability Analyst
Maximize your interview chances
Information TechnologyRobotics
Actively HiringNo H1BU.S. Citizen OnlySecurity Clearance Required
Insider Connection @Peraton
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Conduct regular vulnerability assessments, including comprehensive scans for vulnerabilities and compliance issues within a large, multi-tenant enterprise data center environment.
Utilize Tenable Security Center and Tenable I.O. to configure, execute, and analyze vulnerability scans across both internal and external systems.
Interpret scan results, prioritize vulnerabilities based on severity and risk, and engage with the operations team to develop effective remediation strategies.
Lead the setup, implementation, and management of a continuous vulnerability monitoring program.
Work closely with the DHS CDM team to ensure that relevant data feeds are being captured and accurately reported to the CDM dashboard.
Collaborate with the team to enhance the visibility of vulnerabilities and compliance posture through effective use of automated monitoring and alerting tools.
Act as the subject matter expert in vulnerability remediation processes, providing guidance to the operations and IT teams for mitigating identified vulnerabilities.
Facilitate and track vulnerability remediation efforts, ensuring adherence to established timelines and risk management protocols.
Monitor progress of remediation actions and provide status updates to management, stakeholders, and compliance teams.
Work with cross-functional teams, including infrastructure, operations, and compliance teams, to ensure vulnerabilities are remediated and mitigated in a timely and efficient manner.
Provide detailed, actionable reporting and analysis of vulnerability trends, risk assessments, and remediation status to senior management and stakeholders.
Participate in vulnerability triage meetings, providing technical expertise and guidance to team members and other departments.
Continuously evaluate and improve vulnerability management tools, processes, and techniques.
Provide feedback on improvements to the Tenable Security Center and Tenable I.O. configurations and workflows, ensuring the tools are optimized for the organization's needs.
Stay updated on emerging threats and vulnerabilities, proactively recommending strategies to address new and evolving risks.
Maintain thorough documentation of vulnerability management processes, remediation steps, and compliance activities.
Ensure that vulnerability management processes align with industry best practices and compliance requirements, including DHS CDM, PCI-DSS, HIPAA, and others.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
2 years with BS/BA; 0 years with MS/MA; 6 years with no degree
Hands-on experience with Tenable Security Center and Tenable I.O., including setting up and running vulnerability and compliance scans, interpreting results, and taking actions to mitigate risks.
Proficiency in networking technologies (TCP/IP, DNS, DHCP, HTTP/HTTPS, etc.), network security protocols, and firewall configurations.
Strong working knowledge of operating systems (Linux, Windows, Unix) and their associated vulnerabilities.
Expertise in using vulnerability scanning tools (preferably Tenable products) and working with enterprise-level vulnerability management platforms.
Knowledge of DHS CDM and experience working with security monitoring and compliance platforms.
Ability to analyze complex vulnerability data, prioritize remediation efforts, and translate findings into actionable insights for both technical and non-technical stakeholders.
U.S. Citizenship required; Must have the ability to obtain and maintain a Public Trust clearance
Preferred
Certifications (one or more of the following is a plus): CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), CEH (Certified Ethical Hacker), CompTIA Security+ or other relevant certifications in security, networking, or vulnerability management.
Bachelor's degree in a STEM field (Science, Technology, Engineering, or Mathematics) or a related discipline, and minimum 5 to 7 years experience in vulnerability management, with a strong background in providing vulnerability assessment services within a large, multi-tenant enterprise data center.
Familiarity with additional vulnerability management platforms (e.g., Qualys, Rapid7 Nexpose) or SIEM tools (e.g., Splunk, IBM QRadar) is a plus.
Experience working with cloud security and vulnerabilities in cloud platforms (e.g., AWS, Azure, Google Cloud) is beneficial.
Strong written and verbal communication skills, including experience creating reports, presentations, and detailed documentation.
Demonstrated ability to work cross-functionally with teams from various disciplines (security, operations, infrastructure, etc.) to achieve common goals and resolve complex issues.
Strong problem-solving skills, with the ability to manage multiple tasks, prioritize effectively, and work under pressure in a fast-paced environment.
Benefits
Paid Time-Off and Holidays
Retirement
Life & Disability Insurance
Career Development
Tuition Assistance and Student Loan Financing
Paid Parental Leave
Medical, Dental, & Vision Care
Company
Peraton
Peraton Fearlessly solving the toughest national security challenges.
Funding
Current Stage
Late StageRecent News
2024-04-18
2024-04-01
Company data provided by crunchbase