Vulnerability Assessment Analyst

Company: Zolon Tech Solutions, Inc.
Location: Springfield
Posted on: February 3, 2025

Job Description:

Title: Vulnerability Assessment Analyst

Hit Apply below to send your application for consideration Ensure that your CV is up to date, and that you have read the job specs first.
Location: Springfield, VA
Duration: Fulltime/Direct Hire

Job Description:
To acquire the advantage, Client seeks a Vulnerability Assessment Analyst in Springfield, VA.

Duties:
Analyze the organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives.
Conduct or support authorized penetration testing on enterprise network assets.
Maintain deployable cyber defense audit toolkit (e.g., specialized cyber defense software and hardware) to support cyber defense audit missions.
Maintain knowledge of applicable cyber defense policies, regulations, and compliance documents related to cyber defense auditing.
Prepare audit reports identifying technical and procedural findings and recommend remediation strategies/solutions.
Conduct required reviews as appropriate within the environment (e.g., Technical Surveillance, Countermeasure Reviews [TSCM], TEMPEST countermeasure reviews).
Perform technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications).
Make recommendations regarding the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes)

Requirement:
Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
Skill in assessing the robustness of security systems and designs.
Skill in detecting host and network-based intrusions via intrusion detection technologies (e.g., Snort).
Skill in mimicking threat behaviors.
Skill in the use of penetration testing tools and techniques.
Skill in the use of social engineering techniques. (e.g., phishing, baiting, tailgating, etc.).
Skill in using network analysis tools to identify vulnerabilities. (e.g., fuzzing, nmap, etc.).
Skill in reviewing logs to identify evidence of past intrusions.
Skill in conducting application vulnerability assessments.
Skill in performing impact/risk assessments.
Skill to develop insights about the context of an organization's threat environment.
Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Education:
Bachelor's degree in cybersecurity or IT-related field

Required Clearance:
TS/SCI

Required Certification:
IAT Level 2 and Two Penetration Testing Certifications w/ At Least One Being an Advanced Certification (e.g., OSCP, OSCE, OSEE, GSE, GXPN, CPT)


Thanks & Regards,
Sandeep
Zolon Tech Inc.

Keywords: Zolon Tech Solutions, Inc., Towson , Vulnerability Assessment Analyst, Professions , Springfield, Maryland