Defensive Cyber Operations Analyst (Vulnerability Scanning)

TL;DR

Defensive Cyber Operations Analyst (Vulnerability Scanning): Performing regular vulnerability assessments and scanning of network, systems, and applications to identify security weaknesses with an accent on risk analysis, mitigation planning, and compliance with Army and IC regulations. Focus on managing scanning tools, supporting incident response, and educating personnel on security best practices.

Location: Onsite at Fort Eisenhower, GA, USA. Requires an active TS security clearance and eligibility for SCI and NATO read-on prior to starting work. Must meet DoD 8140 / 8570.01-m requirements for a privileged user on a TS/SCI information system.

Company

hirify.global is a solution-driven company providing data insights and technology solutions for U.S. national interest missions.

What you will do

• Perform regular vulnerability assessments and scanning of network, systems, and applications using Tenable Nessus in on-premise and cloud environments.
• Analyze scan results to determine risk levels and collaborate on mitigation/remediation plans, including patch management and configuration changes.
• Manage and maintain vulnerability scanning tools and software, ensuring they are up-to-date and effective.
• Participate in or support incident response activities by providing expertise in vulnerability-related issues.
• Create detailed reports on vulnerability scan results, risk assessments, and mitigation progress for stakeholders and regulatory bodies.
• Ensure compliance with industry standards and regulations such as DOD, Army, IC task orders, and the ACAS DISA Best Practice Guide.
• Educate and train ISSO and ISSM personnel across the Army Intelligence Enterprise (AIE) on vulnerability scanning and security best practices.
• Continuously monitor systems and networks for emerging threats and vulnerabilities, adapting processes as needed, and stay current with cybersecurity threats and technologies.

Requirements

• Active TS security clearance and eligible for SCI and NATO read-on prior to starting work.
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Meet DoD 8140 / 8570.01-m requirements for a privileged user on a TS/SCI information system prior to starting work.
• Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH).
• Proficiency in vulnerability scanning and cyber tools such as Nessus, Splunk, network analyzers, and Big Data Platform.
• Strong understanding of cybersecurity principles, threat landscape, and common vulnerabilities and exposures (CVEs).
• Ability to analyze and interpret vulnerability scan results and make informed decisions regarding risk and remediation.
• Strong written and verbal communication skills for creating reports, conveying information, and collaborating with teams.

Culture & Benefits

• Join a solution-driven company delivering data insights and technology solutions to customers with missions critical to U.S. national interests.
• Opportunity to apply talents in building technology-agnostic solutions.
• Collaborative environment working closely with IT and security teams.
• Committed to being an Equal Opportunity Employer and providing accommodations for qualified individuals with disabilities.