SC3

Senior Security Analyst

US-DC-Washington
4 months ago
Job ID
2017-1049
# of Openings
1
Category
Other

Overview

 

In addition to our government services area, SC3 provides cutting-edge competitive intelligence and strategic management consulting to commercial clients. Private industry leaders from the financial, health care, manufacturing and other sectors turn to SC3 to ensure that they have access to the most relevant, current, and strategically important information – not only to grow their businesses, but also to protect them.

 

Responsibilities

SC3 currently has a full-time position for a Security Analyst to identify, mitigate and patch workstations, servers, applications and network vulnerabilities using approved systems and tools. 

  • Vulnerability Management discovery, monitoring, remediation, reporting and patching
  • Provide vulnerability management and actively support Certification and Accreditation (C&A) activities for IT systems, to include: management, mitigation, testing, and system patching
  • Assess Retina or Nessus reports and address new vulnerabilities; identify IT security vulnerabilities for monitoring, remediation and reporting
  • Identify and document nature of vulnerability solution to remediate and/or workaround if needed
  • Will be addressed within one week of issuance; “Addressed” is defined as patched, developing a plan of action & milestone report or designated approving risk acceptance request, or noted as not applicable; Manage and maintain vulnerability reports
  • Patch systems, document and closed out vulnerabilities within time frame required of issuance
  • Generate a weekly Vulnerability Management & Patching reports; coordinate with Change Management and maintenance schedules
  • Working knowledge of Active Directory
  • Working knowledge of Group Policy Management to mitigate some security vulnerabilities by creation of GP objects.
  • On identified vulnerable Window servers Microsoft Security Advisory are used as very good reference.
  • Review National Vulnerability Database (NVD) daily for security findings
  • Use information from Common Vulnerabilities Exposures (CVE) which is the Standard for Information Security Vulnerability Names for remediation information to remediate vulnerability.
  • Communicate with System Owners and applications on vulnerability and what steps are needed to remediate vulnerability.
  • Working Knowledge of Microsoft Server 2008, 2012 and 2012R2
  • Understanding of server system registry keys

Qualifications

Required Skills/Experience: 

  • At least 8 years of experience with cybersecurity or information assurance and a Bachelor's degree, or 
  • At least 10 years of experience related to this position without a Bachelor’s degree 
  • Excellent Customer Service skills

DESIRED SKILLS/EXPERIENCE:

  • Demonstrate skillsets and experience in addressing the majority of vulnerabilities: Microsoft Windows Client/SQL/Server, Linux, SSL, VMWare, SSH, SNMP
  • Proficiency in the use of Microsoft Office Suite

 

Our values are simple and straightforward. We know that competitive salaries and generous benefits are essential in our industry and SC3 strives to offer the best in both areas. 

 We are proud to offer:

  • Medical/Dental/Vision Insurance
  • 401(k) Plan
  • Supplemental Life & AD&D 
  • Short & Long-Term Disability Insurance 
  • Flexible Spending Plan 
  • Paid Time Off 
  • Paid Holidays 
  • Professional Development 
  • Employee Referral Bonus 
  • Identity Protection Services

 

We are proud to be an EEO/AA employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing as required by the customer.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed