Security Analyst

• Work closely with the client Information Systems Security Officer (ISSO) and play a critical part in safeguarding Client's IT infrastructure
• Lead the agency’s vulnerability management lifecycle using Tenable.sc, Tenable.io, Nessus Manager, and Nessus scanners (on-prem and cloud)
• Analyze, prioritize, and track remediation of vulnerabilities in coordination with IT operations and system owners
• Maintain scan schedules, asset groups, scan policies dashboards, and reports tailored to agency infrastructure and communicate risk posture and remediation progress to relevant infrastructure, application, and cloud teams to remediate vulnerabilities
• Define the scanner and security center architecture, refine data flows and synchronizations, tune scanning configurations to minimize false positives and ensure the best coverage
• Develop and maintain documentation for system setup, operation, vulnerability management processes, exceptions, and remediation tracking
• Support implementation of security projects that require compliance with relevant government policies or standards
• Act as SME (subject matter expert) for vulnerability management tools and processes
• Ensure systems and practices comply with FISMA and FedRAMP related Security Assessment and Authorization (SA&A) and compliance for client IT programs
• Assist client in coordination, implementation, communication, and enforcement of the Agency IT security policies
• Support incident response

IT Vulnerability Management Lead – Senior Security Analyst

Cybersecurity Analyst – Risk Management Framework, TS/SCI

Information Security Analyst IV

Senior Acoustic Intelligence Analyst

Senior Information Security Analyst