Logo
M.C. Dean, Inc.

Vulnerability Remediation Specialist 3 - Annapolis Junction, MD

M.C. Dean, Inc., Annapolis, MD


Position Summary

You will be working with a dynamic team of system engineers responsible for design decisions, implementation, operations & maintenance, and cybersecurity for large complex resilient hardware and virtualized infrastructure to ensure implemented solutions meet stakeholder needs, standards, and performance requirements. You will be communicating designs and solutions to the entire technical program team and to end-customer stakeholders. You will work closely with stakeholders to gather technical requirements, architect solutions, and execute on deliverables. You will be responsible for implementing and maintaining multi-tenant, multi-cloud, cloud and on-prem IT infrastructure solutions to ensure the success of multiple customers across multiple programs.

Essential responsibilities and activities include but are not limited to:
  • Manage and independently detect, prioritize, and remediate identified vulnerabilities across applications, endpoints, databases, networking devices, and mobile, cloud and third-party assets
  • Administer software deployment tools such as SCCM, PDQ, Group Policy, PowerShell scripts, etc. to deploy software/patches and apply configuration changes necessary to remediate vulnerabilities
  • Support and monitor patch management compliance across the infrastructure to align to audit requirements
  • Deploy, monitor, troubleshoot, and maintain end point client health to ensure patching compliance
  • Apply DISA STIGs for Operating Systems and applications and remediate compliance variances
  • Leverage vulnerability database sources to understand weaknesses and their probability and remediation options, including vendor-supplied fixes and workarounds
  • Actively collaborate with ISSO to develop, maintain, and enhance cyber security controls
  • Collaborate with security groups such as red teams, threat intelligence and risk management to form a holistic team dedicated to thwarting attackers and reducing attack surface
  • Assist multiple teams on the implementation of configuration management for security hardening
  • Work as a team to consistently learn and share advanced skills and foster team excellence
  • Participate in the weekly vulnerability remediation planning meetings

Position / Candidate Requirements
  • Active TS/SCI w/ Polygraph security clearance required
  • Bachelor's Degree in Computer Science, Electrical Engineering, or a Related Engineering Discipline, and 5 years of progressive experience
  • Possess an understanding of NIST 800-53 Security Controls and how they are used to harden computers, databases, and network devices
  • DoD 8750 IAT Level-II Certification (CCNA Security, CySA , GICSP, GSEC, Security CE, CND, or SSCP)
  • Possess an understanding of Group Policy Objects and how they are implemented and used to harden computers
  • Strong MS Excel, Word, PowerPoint, and Visio Skills
  • Ability to travel internationally up to 25% of the time

Desired / Advantageous Qualifications:
  • Experience with Hyperconverged architectures such as Cisco Hyper Flex, Nutanix, etc
  • Experience with Cisco Unified Computing System (UCS), Fabric Interconnects and other similar technologies
  • Experience with Virtualized Desktop Infrastructure, e.g., Citrix ZenDesktop, and/or VMware Horizon
  • Large on-premise storage engineering and administration experience with NetApp, Dell/EMC, Pure Storage, etc.
  • Experience designing and deploying Collaboration Platforms such as Microsoft SharePoint
  • Experience designing and deploying SQL Database Infrastructure such as Microsoft SQL Server
  • Experience engineering and implementing data center and campus area networks and security stacks
  • Experience engineering and implementing platforms and services in a software-defined network environment
  • Experience with DoD IT security requirements including DISA STIG/SRGs
  • Understanding of Department of Defense standards and best practices
  • Vendor certifications, VMware, Cisco, Microsoft, NetApp, etc.

Abilities:
  • Exposure to computer screens for an extended period of time
  • Sitting for extended periods of time
  • Reach by extending hands or arms in any direction
  • Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard
  • Listen to and understand information and ideas presented through spoken words and sentences
  • Communicate information and ideas in speaking so others will understand
  • Read and understand information and ideas presented in writing
  • Apply general rules to specific problems to produce answers that make sense
  • Identify and understand the speech of another person