Senior Tenable Analyst

About The Position

Requirements

• Bachelor's Degree and a minimum 8 years of experience, 5 in an Information Security environment.
• Industry recognized Information Security Certifications (CISSP, Security+, CEH)
• General knowledge of IT environments, information security, privacy, and threat and vulnerability management.
• Knowledge of NIST SP 800 series and testing NIST 800-53 security controls
• Ability to effectively present IT security risk to executive management, business and technical
• Ability to work independently and as part of a multi-disciplined and dynamic team
• Understanding of latest information security vulnerabilities
• Excellent self-directing skills – ability to initiate, coordinate and prioritize responsibilities and follow through on tasks and projects
• Excellent organizational, analytical, and problem-solving abilities.
• Proficient in MS Office (Word, PowerPoint, Excel) and MS Project
• Excellent command of English language in speaking and writing
• Experience in a rapid paced, time sensitive, high-quality environment.
• History of ethical performance.
• Exhibit considerable client delivery, business development, and proposal development experience.
• Strong management, teamwork, and interpersonal skills against difficult due dates and timelines.
• Strong written and verbal skills to effectively communicate at all levels in government and industry.

Nice To Haves

• Experience with Tenable’s product suite, specifically SecurityCenter, Nessus, Nessus Agents, and Nessus Network Monitor
• Experience with Vulnerability Management and Continuous Monitoring and Diagnostic operations.
• Implement new technologies and infrastructure for enhanced database risk assessment capabilities
• Coordinate and perform database assessments, analyze scan data, and prepare vulnerability reports for information systems
• Experience implementing and maintaining database Configuration Management standards and baselines
• Experience testing web applications using automated and manual testing methods.
• Vulnerability Scanning: Tenable Nessus, Qualys, or Rapid7
• Database Scanning: DbProtect or AppDetective
• Application Scanning: Appscan, Netsparker or Burp
• Proficient in MS Office (Word, PowerPoint, Excel) and MS Project
• Proposal development experience
• Knowledge of Federal contract vehicles
• Presentation skills

Responsibilities

• Serve as a technical security analyst in a dynamic client environment.
• Operate in a fast-paced environment using leadership skills and providing thoughtful ideas of process improvements and enhancements.
• Conduct compliance and vulnerability assessments on a broad range of systems, including mainframe, UNIX, Windows, networking, databases, virtual environments, applications, and web servers.
• Utilize both manual and automated methodologies to identify, assess, and report security risks.
• Prioritize findings based on risk and document detailed corrective and remediation plans/actions.
• Clearly communicate threat, vulnerabilities, and risk information to stakeholders in executive management positions as well as fellow technical staff and provide recommend solutions for client technical and security challenges.
• Develop, enhance, and implement risk management strategies to support cybersecurity programs and engage with stakeholder partners to design and implement a holistic risk management strategy.
• Facilitating communication between the Information Security Program, client Information System Security Officers (ISSOs), and system owners to address security issues and resolve vulnerabilities in a timely manner
• Experience in a rapid paced, time sensitive, high-quality environment.
• Strong problem-solving capabilities and the ability to effectively communicate solutions.
• Ability to take direction and achieve quality results, independently strive for personal excellence when completing tasks.
• Strong customer service focus to meet the needs of internal and external customers.
• Professional, pleasant, and polished demeanor.
• Ability to work collaboratively with others.
• Strong eye for small details that make a difference.