Vulnerability Remediation Specialist 3 - Annapolis Junction, MD with Security Clearance

---

Job description

Position Summary You will be working with a dynamic team of system engineers responsible for design decisions, implementation, operations & maintenance, and cybersecurity for large complex resilient hardware and virtualized infrastructure to ensure implemented solutions meet stakeholder needs, standards, and performance requirements. You will be communicating designs and solutions to the entire technical program team and to end-customer stakeholders. You will work closely with stakeholders to gather technical requirements, architect solutions, and execute on deliverables. You will be responsible for implementing and maintaining multi-tenant, multi-cloud, cloud and on-prem IT infrastructure solutions to ensure the success of multiple customers across multiple programs. Essential responsibilities and activities include but are not limited to: Manage and independently detect, prioritize, and remediate identified vulnerabilities across applications, endpoints, databases, networking devices, and mobile, cloud and third-party assets
Administer software deployment tools such as SCCM, PDQ, Group Policy, PowerShell scripts, etc. to deploy software/patches and apply configuration changes necessary to remediate vulnerabilities
Support and monitor patch management compliance across the infrastructure to align to audit requirements
Deploy, monitor, troubleshoot, and maintain end point client health to ensure patching compliance
Apply DISA STIGs for Operating Systems and applications and remediate compliance variances
Leverage vulnerability database sources to understand weaknesses and their probability and remediation options, including vendor-supplied fixes and workarounds
Actively collaborate with ISSO to develop, maintain, and enhance cyber security controls
Collaborate with security groups such as red teams, threat intelligence and risk management to form a holistic team dedicated to thwarting attackers and reducing attack surface
Assist multiple teams on the implementation of configuration management for security hardening
Work as a team to consistently learn and share advanced skills and foster team excellence
Participate in the weekly vulnerability remediation planning meetings
Position / Candidate Requirements Active TS/SCI w/ Polygraph security clearance required
Bachelor's Degree in Computer Science, Electrical Engineering, or a Related Engineering Discipline, and 5+ years of progressive experience
Possess an understanding of NIST 800-53 Security Controls and how they are used to harden computers, databases, and network devices
DoD 8750 IAT Level-II Certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP)
Possess an understanding of Group Policy Objects and how they are implemented and used to harden computers
Strong MS Excel, Word, PowerPoint, and Visio Skills Ability to travel internationally up to 25% of the time
Desired / Advantageous Qualifications: Experience with Hyperconverged architectures such as Cisco Hyper Flex, Nutanix, etc
Experience with Cisco Unified Computing System (UCS), Fabric Interconnects and other similar technologies
Experience with Virtualized Desktop Infrastructure, e.g., Citrix ZenDesktop, and/or VMware Horizon
Large on-premise storage engineering and administration experience with NetApp, Dell/EMC, Pure Storage, etc.
Experience designing and deploying Collaboration Platforms such as Microsoft SharePoint
Experience designing and deploying SQL Database Infrastructure such as Microsoft SQL Server
Experience engineering and implementing data center and campus area networks and security stacks
Experience engineering and implementing platforms and services in a software-defined network environment
Experience with DoD IT security requirements including DISA STIG/SRGs
Understanding of Department of Defense standards and best practices
Vendor certifications, VMware, Cisco, Microsoft, NetApp, etc. Abilities: Exposure to computer screens for an extended period of time
Sitting for extended periods of time
Reach by extending hands or arms in any direction
Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard
Listen to and understand information and ideas presented through spoken words and sentences
Communicate information and ideas in speaking so others will understand
Read and understand information and ideas presented in writing
Apply general rules to specific problems to produce answers that make sense
Identify and understand the speech of another person

<!– job description page –>