Cyber Vulnerability Management

Fort Meade, MD

Posted: 07/15/2019 Job Number: JN -072019-10954
Job Title: Cyber Vulnerability Management (Cvm) Compliance
Location: Fort Meade, MD
Industry: DoD/Government
Salary: $100k/yr.

SRG is looking for an experienced Vulnerability Analysts to support Joint Force Headquarters Department of Defense Networks (JFHQ-DODIN) in tracking the DODIN vulnerability management operations. The team interfaces with Combatant Commands, Services, Agencies and Field Activities (CC/S/A/FAs) to compile statistics and generate reports on compliance levels. The team also alerts leadership to negative trending and systemic issues.

  • Communicate (written and oral) with CC/S/A/FAs concerning CVM compliance status including their current status, POA&M, technical requirements for their systems, policy and program details and changes.
  • Utilize a vulnerability management system and any follow-on systems to properly upload information, generate reports, and review POA&M for vulnerability compliance tracking.
  • Provide compliance information, as directed, to the various JFHQ-DODIN directorates to support operations.
  • Compile vulnerability compliance reports and briefings associated with affected and non-affected DoD assets to produce weekly, monthly, and annual reports/matrix/metrics including, but not limited to monthly POA&M audits and watch lists.
  • Develop and provide technical review for CVM products including POA&M audits and incidents resulting from unmitigated vulnerabilities for Government review
  • Provide JFHQ-DODIN leadership information on CVM compliance. Develop, staff, and maintain accurate JFHQ-DODIN orders including but not limited to WARNORDs, OPORDs, TASKORDs, and FRAGOs.
  • Maintain CVM program, policy, and direct their implementation.
Required Experience/Qualifications
  • Active DoD TS/SCI clearance
  • Proficient in developing briefing materials, administrative, and logistics support
  • Have a working understanding of the Risk Management Framework (RMF).
  • Have specialized knowledge in computer network theory and understand IT standards, including the OSI model, and the methods of exploiting those standards.
  • Have knowledge of current and planned CVM technologies and perform duties related to the CVM Program, HBSS, Continuous Monitoring and other automated technologies.
  • Have strong interpersonal, organizational and critical thinking/problem solving skills
  • Must be flexible, dependable and be able to multi-task with priorities
  • 3 years experience with IA Experience with and/or a working knowledge of the following :
    • DoD Information Assurance and Vulnerability Management
    • Networking infrastructure: routers, switches, and web security gateway
    • TCP/IP Protocols and Services
    • Identification and Access Management
    • SIEM Reports
Desired Experience/Qualifications
  • Enterprise Mission Assurance Support Service (eMASS)
  • Experience at USCYBERCOM or Cyber Service Centers or equivalent.
  • Demonstrated understanding of cyber advanced persistent threats, actors, infrastructure, and TTP's.
  • Demonstrate understanding of defensive cyber operations to include cyber incident response, and Intrusion Detection Systems (IDS).
  • Experience with network analysis and coursework preferred.
  • MA or MS degree preferred.
  • DoD 8570 IAT Level II
  • Certification in any of the following areas: A+, Network+, Security+, CISSP
SRG Government Services (SRG) is a leading provider of information technology, training, engineering, accounting and intelligence analytical services for agencies in the intelligence, defense, homeland security, cyber security, and federal civilian markets. SRG utilizes an innovative approach to identify and qualify talent that is unique to the federal contracting industry, featuring a cutting edge platform that allows us to rapidly and precisely match professionals to client requirements. We have a proprietary database of over one million candidates and maintain continuous contact with our qualified talent.

Apply Online

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.