Vulnerability Assessment Analyst

About The Position

Requirements

• Must be local to Richardson, TX and Greenville, TX
• Security Expertise: Required DoD 8140 IAT Level II compliant certification such as CompTIA Security+
• Must have an active and current Secret Clearance
• Bachelors degree with 5+ Years of relevant experience. Additional years of experience may be considered in lieu of degree
• Technical Proficiency: Over two years of experience in systems, OS security or network security.
• Proficient in Tenable Nessus, Nessus Manager, and Tenable.sc , or other vulnerability scanning and management.
• Operating Systems & Automation: Basic hands-on experience with command-line interfaces on various operating systems, including Linux and Windows.
• Understands basic command in using Bash and PowerShell for scripting and automation.
• Compliance & Risk Management: Basic working knowledge of DISA STIGs, including the ability to apply, verify, and document compliance.
• Understands the basics of Risk Management Framework (RMF) process, including the creation of technical artifacts.
• Problem-Solving & Collaboration: Demonstrated analytical skills for troubleshooting security and connectivity issues.
• A proven collaborator with excellent communication skills, able to work effectively with cross-functional teams.

Nice To Haves

• Familiarity with other vulnerability scanning or security tools (e.g., Anchore, OpenSCAP, Syft, Grype, PowerSTIG, Evaluate-STIG, STIGviewer).
• Experience with scripting or automation to enhance scanning and reporting processes.
• Experience with Windows and Linux operating systems and network device configurations and navigating and interacting via command line.
• Knowledge of containerization platforms like Docker and container orchestration tools such as Kubernetes, OpenShift, or similar.
• Other relevant cybersecurity certifications like SSCP, CCSP, CEH, PenTest+, Cloud+, GIAC, GCED, GCIH or CySA+  are a plus.

Responsibilities

• Assist in the analysis of new security tools and technologies and their impact on existing systems and workflows.
• Support the integration of security solutions by helping to document and implement configuration settings and requirements.
• Contribute to ensuring security changes are technically sound and comply with RMF, DoD, and NIST standards.
• Help identify and address gaps in cyber tools and processes and assist with the implementation of new solutions.
• Learn and apply DISA STIGs by assisting with their implementation and verification on various systems.
• Contribute to security monitoring and incident response using SIEM technologies.
• Collaborate with team members to communicate and document security configurations and requirements.
• Maintain familiarity with software development product lines.