Vulnerability Assessment Analyst

Leidos Holdings Inc.•Dallas, TX

32d•$85,150 - $153,925

About The Position

Leidos has an opening for a highly qualified and cleared Vulnerability Assessment Analyst for the Multi-Domain Solutions Division. This is an exciting opportunity to bring your experience to support across all-domain large-scale weapon systems, Information Technology Systems, and Command and Control Systems to realize the Department of Defense Joint All-Domain Command and Control (JADC2). In this role you will support the Advanced Battle Management System (ABMS) Digital Infrastructure (DI) Processing Node (PN) team to design and implement solutions that can be delivered at speed, scale, and with the necessary security to deliver operational advantages to the joint warfighter. ABMS is a top modernization priority for the Department of the Air Force and will be the backbone of a network-centric approach to battle management in partnership with all the services across JADC2. This position will work closely with Program Managers, domain engineers, and Government counterparts across Government and Industry partners.

Requirements

Must be local to Richardson, TX and Greenville, TX
Requiredâ¯DoDâ¯8140 IAT Level II compliant certification such as CompTIA Security+
Must have an active and current Secret Clearance
Bachelors degree with 5+ Years of relevant experience. Additional years of experience may be considered in lieu of degree
Over two years of experience in systems, OS security or network security.
Proficient in Tenable Nessus, Nessus Manager, and Tenable.sc, or other vulnerability scanning and management.
Basic hands-on experience with command-line interfaces on various operating systems, including Linux and Windows.
Understands basic command in using Bash and PowerShell for scripting and automation.
Basic working knowledge of DISA STIGs, including the ability to apply, verify, and document compliance.
Understands the basics of Risk Management Framework (RMF) process, including the creation of technical artifacts.
Demonstrated analytical skills for troubleshooting security and connectivity issues.
A proven collaborator with excellent communication skills, able to work effectively with cross-functional teams.

Nice To Haves

Familiarity with other vulnerability scanning or security tools (e.g., Anchore, OpenSCAP, Syft, Grype, PowerSTIG, Evaluate-STIG, STIGviewer).
Experience with scripting or automation to enhance scanning and reporting processes.
Experience with Windows and Linux operating systems and network device configurations and navigating and interacting via command line.
Knowledge of containerization platforms like Docker and container orchestration tools such as Kubernetes, OpenShift, or similar.
Other relevant cybersecurity certifications like SSCP, CCSP, CEH, PenTest+, Cloud+, GIAC, GCED, GCIH or CySA+â¯ are a plus.

Responsibilities

Assist in the analysis of new security tools and technologies and their impact on existing systems and workflows.
Support the integration of security solutions by helping to document and implement configuration settings and requirements.
Contribute to ensuring security changes are technically sound and comply with RMF, DoD, and NIST standards.
Help identify and address gaps in cyber tools and processes and assist with the implementation of new solutions.
Learn and apply DISA STIGs by assisting with their implementation and verification on various systems.
Contribute to security monitoring and incident response using SIEM technologies.
Collaborate with team members to communicate and document security configurations and requirements.
Maintain familiarity with software development product lines.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume