Logo
XCEL Engineering Inc

Cyber Security Vulnerability Analyst

XCEL Engineering Inc, Oak Ridge, Tennessee, United States, 37830


COMPANY OVERVIEW XCEL Engineering, Inc. is an award-winning small business that provides trusted information technology, engineering, consulting and project management solutions and services to federal agencies and organizations. Originally founded in 1971 by professional engineers at the University of Tennessee, XCEL was acquired in 2003 by U.S. Army and Navy veterans and in 2023 became a MartinFed company. XCEL Engineering is a part of IT Lab Partners (ITLP) which was created to support a leading research facility in the East Tennessee region in recruiting the best and the brightest technical talent. Considering joining our impressive team today JOB OVERVIEW XCEL Engineering has an opening for a Cyber Security Vulnerability Analystto immediately support their Defensive Cyber Operations (DCO) team. This position's primary responsibility is to conduct event triage in a tiered operational security model while training in and supporting vulnerability management and threat intelligence tasks. The ideal candidate will be an experienced analyst with a strong background in addressing network vulnerabilities and conducting incident response activities. This is a full-time, permanent position that will work onsite in Oak Ridge, TN 2-3 days each week. ESSENTIAL FUNCTIONS Join the Defensive Cyber Operations Group's multi-disciplinary team in responding to advanced Cyber threats from targeted phishing to network-based threats, ransomware, and APT-level activity in a Tier 2 role. Mentor the DCO's junior staff, developing their technical and incident resolution skills. Participate in incident response activities involving multiple teams and functions. Serve as primary coordinator for response to federal Binding Operational Directives and data calls. Leverage internal and external vulnerability scanning scan data to maintain a comprehensive view of ORNL's threat profile and risk status. Automate key DCO functions using Tines technology Partner with the Emerging Threat team to remediate extant vulnerabilities identified by their intelligence activities. Maintain strong collaborative and data sharing relationships with DOE headquarters Cyber units, other DOE laboratories, and external entities. Leverage EDR, SIEM, IDS, and PCAP tools to identify and investigate cyber threats. Assist users with the creation, monitoring, and evaluation of policy and device exceptions. Assist in training and awareness activities to ensure staff are aware of Cyber Security responsibilities and requirements. Partner with Cyber Industrial Control System Engineers to monitor the lab's ICS enclaves for operational and security issues BASIC QUALIFICATIONS A BS in computer science, computer engineering, information technology, or a related field of study and two (2) years of relevant vulnerability remediation experience is required for consideration. The position requires eligibility to obtain a DOE security clearance. Candidates with an Active Q Clearance or Top-Secret Clearance are a plus. 3 or more years of relevant vulnerability remediation experience. CISSP, GCIH, or equivalent credentials preferred. Extensive Tenable experience preferred. Solid understanding of security architecture, policies, and security capabilities of major operating systems. Demonstrated experience identifying and resolving technical issues in a project team environment, while remaining flexible and meeting the needs of the business. Familiarity with DOE environment and certification / accreditation processes. Excellent interpersonal skills; must interface well with all management levels, system owners, administrative personnel, highly technical cyber security analysts, and general staff. Excellent professional communication skills. Experience with Nozomi Networks Guardian platform a plus. PHYSICAL REQUIREMENTS and ENVIRONMENTA CONDITIONS Inside office environment. Working on a computer for long periods of time. May involve long period of sitting at a desk. OTHER DUTIES This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. Xcel Engineering is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable federal, state or local law. If you are a qualified individual with a disability or disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access Xcel Engineering's current openings as a result of your disability. You can request reasonable accommodations by calling 855.212.1810. Thank you for your interest in Xcel Engineering. All positions at Xcel Engineering, Inc. are contingent upon passing both a background check and drug screening prior to a start date and are subject to random drug screenings during the employment period. In addition, Xcel Engineering is an E-Verify employer. For more information, or to apply now, you must go to the website below. Please DO NOT email your resume to us as we only accept applications through our website. -