VAT Analyst

Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a U.S. Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public‑facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations.

CBP SOC is responsible for the overall security of CBP Enterprise‑wide information systems, and collects, investigates, and reports any suspected and confirmed security violations.

The VAT Analyst will be assisting with the Enterprise Information System Vulnerability Management (ISVM) compliance validation, executing vulnerability scans, and conducting vulnerability assessments of IT systems. The analyst will perform research on current vulnerabilities, support Incident Response and SOC functions related to vulnerabilities, and be responsible for authoring security advisories.

• Bachelor’s Degree and 4 years of relevant professional work experience. Additional years of experience are accepted in lieu of a degree.
• Familiarity with vulnerability scanning tools (e.g., Tenable Nessus, DBProtect, Qualys, IBM Guardium, Web Inspect, Splunk, Swimlane, Service Now).
• Basic understanding of cloud environments (e.g., AWS) and cloud‑based scanning tools (e.g., Anchore).
• Ability to maintain asset inventories within vulnerability management platforms.
• Capable of scheduling, launching, and monitoring vulnerability scans independently.
• Basic knowledge of cloud database services (e.g., AWS RDS clusters).
• Ability to generate, review, and distribute vulnerability scan reports to stakeholders.

• Awareness of federal cybersecurity frameworks (FISMA, NIST SP 800‑53). Self‑starter with the ability to independently prioritize and complete multiple tasks with little to no supervision.
• Strong written, oral, and presentation communication skills.
• Experience with configuration compliance and Security Technical Implementation Guides.
• Ability to script in one or more of the following computer languages:
  Python, Bash, Visual Basic, or Power Shell.

Bachelor’s degree in computer science, Information Technology, Cybersecurity, Engineering, or related field, OR an equivalent combination of relevant certifications and professional experience (e.g., 4 years in vulnerability assessment, penetration testing, or security operations). Relevant experience is within one of the following areas: pentesting, security technical assessments, or supporting vulnerability scanning/management program.

At least one entry‑level certification (e.g., Security+, CEH, SSCP, GSEC).

Must have the ability to obtain Public Trust clearance. In addition to the specific clearance requirement, all personnel supporting CBP must have a current background investigation (BI) or obtain a favorable BI before joining the program. All CBP SOC employees are required to successfully complete a CBP Background Investigation to support this program.

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.