Vulnerability Information Security Analyst

Type of Requisition

Regular

Top Secret/SCI

Top Secret/SCI

None

Cyber and IT Risk Management

Skills: Information Security, Security Reviews, Vulnerability Assessments

Certifications: None

Experience: 3 + years of related experience

US Citizenship

Required:

Yes

Please take this opportunity to join one of GDIT’s fastest long‑standing growing programs! US Battlefield Information Collection and Exploitation System eXtended (US BICES‑X) is a cutting‑edge program supporting DoD intelligence information sharing on current and emerging global threats to mission and coalition partners and emerging nations. With an internationally dispersed team supporting each combatant command, the US BICES‑X team is in direct support of the war fighter and their missions.

We are seeking a creative and driven professional with a passion for solving real world issues on a cross‑functional, fast‑paced team.

The Vulnerability Analyst is a strong, self‑motivated, solution‑oriented individual who will be joining an experienced team to support the implementation and sustainment of ACAS across multiple networks. We are looking for an experienced, innovative, and enthusiastic analyst to join us in delivering high quality IT systems.

• Conduct and Manage ACAS Vulnerability Scanning, including Tenable.sc, Nessus Agent and Nessus Network Monitor.
• Analyze policies, configurations, and evaluate compliance with regulations and directives.
• Maintain knowledge of applicable policies, regulations, and compliance documents specifically related to ACAS.
• Perform vulnerability assessments and security reviews to identify weaknesses and vulnerabilities within systems that affect the confidentiality, integrity and availability of data.
• Analyze vulnerability reports and suggest remediation / mitigation plans.
• Coordinate with cybersecurity administrators to improve security tools for monitoring and increasing coverage of existing tools.
• Collect, aggregate, synthesize, analyze and report on data from multiple sources and formats.
• Provide technical support to system owners to propose mitigation and remediation solutions to identified vulnerability and security issues.
• Leverage enterprise methodologies and patterns.
• Develop high level system design diagrams and system documentation.
• Evaluate, analytically and systematically, problems with workflows, organization and planning and develop appropriate corrective actions.
• Excellent written and verbal communication skills, with a strong attention to detail and superior ability for problem solving.
• Skilled at directing a small team and executing responsibilities without direct supervision.

• 3+ years of technical experience required.
• BA/BS required - may substitute additional years of experience
• A minimum of two (2) years' experience in building, maintaining, and supporting ACAS related technologies:
  Tenable.sc, Nessus Agent, and Nessus Network Monitor.
• Experience with data analytics, preferably using Excel.
• Must possess and maintain a TS/SCI clearance.
• Must be IAT level II compliant with DoD 8570.1.
• ITIL V4 Foundation within six months of hire.
• Must have completed ACAS Operator and Supervisor course within the last three years.
• May be required to work evening, weekend, and holiday hours as required.

• Knowledge of how traffic flows across the network (TCP/IP, OSI, ITIL).
• Skilled in conducting vulnerability scans and recognizing vulnerabilities in systems.
• Developing and presenting briefings to senior leadership.

The likely salary range for this position is $85,093 - $96,600. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

40

Less than 10%

Onsite

USA FL Mac Dill AFB

Our benefits package for all US-based employees includes a variety of medical plan options, some with…