Vulnerability Management Lead

Click here to return to Available Positions list.

Job Code: 2021-004

Location:  Reston, VA

DUTIES AND RESPONSIBILITIES:

SSI is seeking an experienced vulnerability management expert to oversee system security vulnerabilities and recommend remediation techniques on a new 24/7/365 intelligence community 5-year secure operations center contract.  Candidate will be responsible for providing subject matter expertise to ensure the overall management of the Vulnerability Management Program on a geographically dispersed intel community contract, continually developing and sustaining the ability to present vulnerability status to key stakeholders and government leadership.  Duties and responsibilities also include:

  • Use technical knowledge to perform (Computer Network Defense) CND community evaluations and provide recommendations of continual technological and process improvements that minimize risk.

  • Identify and implement measurable and proactive processes to secure OS, applications, and hardware patch management.

  • Perform Intelligence Community (IC) Information Environment (IE) and IC Element vulnerability checks through auditing and actual testing. Establish governance supporting common vulnerability management and provide a standard methodology.

  • Perform periodic inventory of all IC Enterprise CND IT capabilities to identify CND gaps/deficiencies.

  • Establish a baseline of vulnerability metrics to identify and measure CND effectiveness.

REQUIRED SKILLS AND EXPERIENCE:

  • Extensive background in classified IT cyber defense security center operations, responding to issued vulnerability alerts, messages and warnings.

  • Experience recommending, managing, and implementing common security applications, capabilities, databases, and repositories for use across the IC.

  • Experience providing alerts and bulletins, tracking, and reporting on compliance.

  • Experience with security engineering, system/network security, authentication and security protocols.

  • Knowledge and experience with risk management, risk analysis and demonstrated success in making complex business/risk trade off decisions.

  • Knowledge of security vulnerabilities, remediation techniques, and test and development of exploits.

 

REQUIRED QUALIFICATIONS:

  • 10+ years of experience in vulnerability analysis to include: patch repository maintenance, issuing alerts and bulletins, and tracking IC element compliance.

  • Bachelor’s Degree in Computer Science, IT or related field.

  • Active TS/SCI clearance

  • Security+ CE and CEH, CISSP or certification required for IAT Level II compliance


DESIRED QUALIFICATIONS:

  • Prior experience within DIA a plus

  • Master’s Degree in Computer Science, Management or related field.

 

SSI is a Service-Disabled Veteran Owned and HUBZone small business that provides professional services including systems engineering, information systems integration, and technology management services.  SSI offers a generous array of benefits including: Employee Medical, Vision, Dental, and Prescription Drug Insurance Plans, 60% paid premium for dependents.  SSI provides Life Insurance, Long Term Disability, and Short-Term Disability benefits at no cost. SSI employees receive 24 paid days off in the first year on board.  We also provide Military Leave benefits, a 401(k) Retirement Plan, education assistance, Personal Technology Refresh and Employee Referral bonuses. Positions subject to Service Contract Act (SCA) have benefits provided as required by law. 

To complete a job application for this position using our secure online form, please click the button below.

Click here to return to Available Positions list.