Vulnerability Assessment Team Lead

About The Position

Requirements

• Must be a U.S. Citizen
• Must have active/current Top-Secret clearance with the ability to obtain a TS/SCI.
• Must be able to receive DHS suitability prior to starting employment.
• 10+ years of directly relevant experience in cybersecurity and vulnerability management and information assurance.
• Proven leadership experience, ideally in managing cybersecurity teams.
• Solid understanding of vulnerability assessment tools such as Tenable, Wiz, and other vulnerability assessment tools.
• Experience in penetration testing, risk assessment, and vulnerability management.
• Ability to communicate technical findings to non-technical stakeholders clearly and effectively.
• Strong analytical, problem-solving, and decision-making skills.
• Excellent oral and verbal communication
• Experience and/or familiarity with Secure Technical Implementation Guides (STIGs), Information Assurance Vulnerability Alert (IAVA), DCID 6/3, Federal Information Security Management Act (FISMA) and other tools using industry best practices.
• DoD 8570.1-M Compliance at IAT Level I or equivalency (e.g., Certified Information Systems Security Professional (CISSP)) certification required
• Ten (10) or more years of systems development experience required. [A Master’s degree in a related discipline may substitute for four (4) years of experience. A PhD may substitute for six (6) years of experience.]
• Bachelor’s degree in Information Security, Cyber Engineering or a related discipline is required. [Twelve (12) years of experience (for a total of twenty (20) or more years) may be substituted for a degree.]

Nice To Haves

• Experience working in government or defense environments.
• Knowledge of IT infrastructure, including network design, operating systems, and cloud platforms.
• Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification
• Information Systems Security Engineering Professional (ISSEP) or Information System Security Architect Professional (ISSAP) certification
• SourceFire Certified Professional (SFCP) certification

Responsibilities

• Lead and manage the Vulnerability Assessment Team in identifying, analyzing, and mitigating security vulnerabilities.
• Oversee vulnerability scanning, penetration testing, and risk assessment processes to ensure compliance with best practices and regulatory standards.
• Develop, implement, and improve vulnerability management strategies, guidelines, and frameworks.
• Prioritize security flaws and provide actionable recommendations to mitigate risks effectively.
• Collaborate with cross-functional teams to implement security solutions and remediation plans.
• Monitor emerging threats, vulnerabilities, and industry trends to enhance the organization’s posture proactively.
• Prepare detailed technical reports, risk assessments, and executive summaries for stakeholders.
• Provide mentorship, training, and professional development to team members.
• Ensure the team operates efficiently and adheres to project timelines and organizational standards.