Cyber Security Risk and Vulnerability Analyst ( R-00054650 )
No two career paths will ever look the same. At Leidos, we know the most talented and diverse IT and cyber security professionals will always have a multitude of career choices; your time at Leidos will be a wise investment in your career and in yourself. We welcome your perspective and ideas, in order to foster collaboration and deliver world-class solutions. We look for solutions that not only transform businesses, but change the world.
Leidos is seeking an experienced Cyber Security Risk and Vulnerability Analyst to support a federal customer within the Federal Emergency Management Agency (FEMA) Security Operations Center (SOC).
Identifies and classifies vulnerabilities as applicable to FEMA information systems
Conducts vulnerability scans using Tenable Nessus (Security Center), WebInspect, and other vulnerability management tools
Aids in the management and administration of vulnerability scanning infrastructure (hardware and software)
Conducts detailed risk analysis based on enterprise vulnerability footprint
Correlates system risk using cross-team collaboration with Incident Response
Manages inbound information system vulnerability management (ISVM) reports from DHS
Provides supplemental support to the incident handling lifecycle through identifying potential means of adversary access
MINIMUM REQUIRED QUALIFICATIONS:
Active TS clearance is required
Bachelor's Degree in Information Technology, Computer Science, Information Systems, Business or related field and 4 to 8 years of prior relevant experience or Masters with 2 – 6 years of prior relevant experience.
Military experience and training may be considered in lieu of degree
Active Advanced cyber security certification(s)
Experience with cyber security risk management
Experience with Vulnerability Management platforms
ADDITIONAL DESIRED QUALIFICATIONS:
Technical (hands-on) experience with Cyber security Incident Handling, Malware Analysis, Security Monitoring, Cyber security Compliance, Cyber security Risk assessments, and technical procedure documentation considered a plus
Tenable Nessus (Security Center) experience considered a plus
Systems Administration experience considered a plus
Experience with NIST 800-series documentation considered a plusExternal Referral Bonus:EligiblePotential for Telework:NoClearance Level Required:Top SecretTravel:NoScheduled Weekly Hours:40Shift:DayRequisition Category:ProfessionalJob Family:Cyber OperationsPay Range: