Please take this opportunity to join one of GDIT’s fastest long-standing growing programs! US Battlefield Information Collection and Exploitation System eXtended (US BICES-X) is a cutting edge program supporting DoD intelligence information sharing on current and emerging global threats to mission and coalition partners and emerging nations. With an internationally dispersed team supporting each combatant command, the US BICES-X team is in direct support of the war fighter and their missions. We are seeking a creative and driven professional with a passion for solving real world issues on a cross-functional, fast paced team.
As a Vulnerability Management Analyst supporting USBICES you will be responsible for testing, implementing, deploying, maintaining and reviewing the infrastructure hardware and software that are required to effectively manage the Vulnerability Management Program.
Performs all procedures necessary to ensure compliance with requirements for the scanning and identification of vulnerabilities in networks, servers, endpoints, and applications. Primary responsibilities will include configuration, maintenance, integration and reporting for vulnerability scanning operations.
Performs Vulnerability Management (VM) activities for a large Program; coordinates with government Program staff, USAF, and other government agencies to assist in the creation, dissemination, direction, and auditing of VM policies, standards, and operating procedures.
Configure and perform vulnerability scans to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components.
Configure and perform compliance scanning to analyze configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, and other information system components.
Communicate security and compliance issues to government leaders, Cybersecurity Operations and A&A staff in an effective and appropriate manner.
Provide status reports to stakeholders, senior GDIT and government personnel related to VM metrics/results, key risk indicators, trending and compliance.
Engage with stakeholders and management to facilitate vulnerability discovery and remediation.
Create and maintain SOPs/TTPs for the VM program.
Validate remediation actions and ensure compliance with information security policy, regulatory and contractual requirements.
Assist in the development, update and implementation of VM policies, procedures and standards based on NIST 800-53 standards, best practices and compliance requirements.
Perform system administration, and maintain configuration control, of VM hardware, systems and application software. Coordinate upgrades and other maintenance activities on VM tools.
Maintain proficiency in VM best practices.
Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
Collaborate on and provide VM results and metrics for consistent reporting
8+ years of related experience.
Must possess and maintain a TS/SCI clearance.
Must meet DOD 8570.01M requirements for IAT Level II (e.g. CASP CE, etc.).
BA/BS degree or equivalent work experience.
Communication skills required in one on one, team, and senior management settings.
The ability to work and set priorities on multiple projects/tasks at once and operate in a dynamic, fast-paced team-oriented environment
Must obtain ITIL V4 Foundation within six months of hire.
Implementation and or operation of DOD ACAS Program.
Comprehensive knowledge of data security principles, methods, and techniques.
Depending on job assignment, additional specific certifications may be required.
The work is typically performed in an office environment, which requires normal safety precautions; work may require some physical effort in the handling of light materials, boxes or equipment.
The above-listed job description is not intended to be, nor should it be construed as, exhaustive of all responsibilities, skills, efforts, or working conditions associated with this job. Requests for reasonable accommodations will be considered to enable individuals with disabilities to perform the principal (essential) functions of this job.
For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.