Operational Vulnerability Analyst

We are seeking a Cyber Security Analyst with experience remediating security vulnerabilities in an enterprise environment for the National Institutes of Health (NIH).  You will be working with our endpoint engineers to support approximately 900 users, as well as work alongside other GDIT staff who provide Scientific Systems Engineering, Infrastructure/ Data Center Operations and Program Management support.

You will be interfacing with scientists, doctors, and senior government staff. You may need to be able to explain security policies and remediation processes to customers in a way that is easily understood. You will need to maintain a high-level customer service focus, exhibiting expertise, courtesy, timeliness, and professionalism.

Job Responsibilities and Duties:

• Work with organized patching teams to identify, assess and remediate vulnerabilities.
• Work with other SMEs to integrate HHS-NIH compliancy policies for adherence to automation tasks
• Develop advanced technical solutions for the management of software, hardware, and configurations
• Develop implementation plans for basic software installations and upgrades to operating systems and layered software packages
• Conduct software and systems engineering to develop new capabilities, ensuring security patches are fully integrated
• Track and research known vulnerabilities and develop detection methodology for new attacking vectors
• Conducts comprehensive technology research to evaluate potential systems vulnerabilities
• Advises less experienced personnel on the monitoring and tuning of systems to achieve optimum performance levels
• Act as a technical resource for internal and external customers in delivering and enhancing service
• Identify and manage security risks to ensure they are mitigated in relation to meeting customer needs
• Be proactive to know when patches are past or coming past due

Required Qualifications and Experience:

• BA/BS or equivalent and eight years of experience
• Minimum of three years of experience with Tenable Security Center, Absolute, JAMF, SCCM, Web logic and Apache
• Minimum of three years of experience with Windows 10/11 and Mac OS X 10.12 in an Active Directory enterprise environment
• Minimum of two years scripting experience in Unix/Windows environments, such as Bash, Perl, Python or VBScript
• Minimum of two years of experience in a security control environment (i.e. access control, logging, authentication, encryption, integrity)
• Knowledge of common security-related protocols and their design
• CompTIA Security+
• Prior Helpdesk ticketing software experience, such as ServiceNow
• Ability to obtain a NIH Public Trust

Preferred Qualifications and Experience:

• Ability to write clear, concise documentation
• MS Certified Solutions Association (MCSA) certification
• Ability to provide excellent customer service in person, over phone, through email, and using remote tools

Summary:

• Position is for full time employment with GDIT
• Work schedule is Monday – Friday between core hours of 7:00 am– 6:00 pm
• Good work life balance

#GDITFedHealthJobs

​#GDITFedHealthJobs-NIH