SOC-Vulnerability Management AESS Technician - Journeyman

About The Position

Requirements

• U.S. Citizenship is required
• Security Clearance: Secret Eligible
• Required Certifications: DCWF Work Role 541-Vulnerability Assessment Analyst — Basic proficiency; must hold ONE OR MORE of the following: CEH
• 3+ years of experience in cybersecurity
• Experience executing endpoint security scanning and compliance validation activities in enterprise environments.
• Experience analyzing vulnerability findings to identify misconfigurations, compliance gaps, and remediation priorities.
• Experience documenting technical results with supporting evidence and maintaining vulnerability tracking records and POA&Ms.
• Experience supporting activities aligned to STIGs, IAVMs, RMF requirements, and DoD or ARNG continuous monitoring objectives.
• Experience coordinating corrective actions with system owners, endpoint administrators, and cybersecurity operations teams.
• Ability to validate scan coverage, review scan configuration integrity, and confirm remediation effectiveness through follow-up assessment.

Responsibilities

• Execute endpoint security scanning and compliance validation activities using AESS tools across ARNG enterprise environments.
• Verify endpoint coverage and confirm scan configurations and collected data are accurate, complete, and suitable for vulnerability analysis and reporting.
• Analyze scan results to identify vulnerabilities, misconfigurations, and compliance gaps affecting supported classified and unclassified network environments.
• Document technical findings with supporting evidence and maintain accurate records for vulnerability tracking, remediation status, and continuous monitoring activities.
• Coordinate remediation actions with system owners, endpoint administrators, and cybersecurity operations personnel to address identified weaknesses and restore compliant configurations.
• Perform follow-up validation to confirm corrective actions were implemented effectively and that residual risk is accurately reflected in tracking systems and POA&Ms.
• Support reporting activities aligned with STIGs, IAVMs, RMF requirements, and ARNG continuous monitoring objectives across the DoDIN-Army-NG area of responsibility.
• Contribute to Task 3 vulnerability management deliverables that support 24x7x365 cybersecurity operations defending approximately 141,000 endpoints across 54 states and territories.
• Coordinate vulnerability management findings and status with the broader SOC and cybersecurity operations structure operating in coordination with NETCOM Global Cyber Center and DISA DCDC.