AERMOR
Vulnerability Analyst
AERMOR, Portsmouth, Virginia, United States, 23703
Location:
Portsmouth, VAJob Type: Network & ITExperience: 4+ YearsClearance Type: Secret
AERMOR is seeking an experienced Vulnerability Analyst
that will be responsible for identifying, assessing, and mitigating security vulnerabilities within Navy IT systems and infrastructure .
This position involves conducting vulnerability scans, managing remediation efforts, and ensuring compliance with Navy vulnerability management policies and procedures.
Responsibilities:
Conduct regular vulnerability assessments and scans using tools such as Nessus.Identify and document vulnerabilities in systems, applications, and network devices.Analyze scan results based on risk and impact.Track remediation progress and ensure vulnerabilities are addressed within detailed timelines.Verify the effectiveness of remediation efforts and perform follow-up scans to confirm resolution.Perform risk assessments to identify vulnerabilities on Navy systems and operations.Utilize VRAM processes to assess and prioritize vulnerabilities based on their risk to the Navy’s mission and infrastructure.Provide recommendations for mitigating high-risk vulnerabilities and improving overall security.Review and analyze firewall rules and configurations to ensure they align with security policies.Assist in management and monitoring of firewall systems to detect and respond to potential threats.Identify incomplete Information Assurance Vulnerability Management (IAVM) security patches for network assets and incomplete network scans that may pose potential risk to the global information grid. Identification and mitigation of cyber security vulnerabilities strengthen overall connections to the DoD Information Network (DODIN).Ensure compliance with IAVM directives and guidelines issued by Navy.Track and manage IAVM vulnerabilities, including maintaining up to date records of vulnerabilities and remediation status.Prepare and submit reports on IAVM findings.
Qualifications:
Proven experience as a Vulnerability Analyst or similar role, with experience in a defense or government environment preferred.Proficiency with vulnerability scanning tools such as Nessus or similar.Working knowledge of Splunk preferred.Knowledge of firewall management and security configuration.Familiarity with VRAM processes and IAVM guidelines.Understanding of risk assessment/risk management methodologies-RMF preferred.Bachelor’s degree in an IT related discipline AND at least four years of experience as described above; OR nine years of relevant experience as described above.
Portsmouth, VAJob Type: Network & ITExperience: 4+ YearsClearance Type: Secret
AERMOR is seeking an experienced Vulnerability Analyst
that will be responsible for identifying, assessing, and mitigating security vulnerabilities within Navy IT systems and infrastructure .
This position involves conducting vulnerability scans, managing remediation efforts, and ensuring compliance with Navy vulnerability management policies and procedures.
Responsibilities:
Conduct regular vulnerability assessments and scans using tools such as Nessus.Identify and document vulnerabilities in systems, applications, and network devices.Analyze scan results based on risk and impact.Track remediation progress and ensure vulnerabilities are addressed within detailed timelines.Verify the effectiveness of remediation efforts and perform follow-up scans to confirm resolution.Perform risk assessments to identify vulnerabilities on Navy systems and operations.Utilize VRAM processes to assess and prioritize vulnerabilities based on their risk to the Navy’s mission and infrastructure.Provide recommendations for mitigating high-risk vulnerabilities and improving overall security.Review and analyze firewall rules and configurations to ensure they align with security policies.Assist in management and monitoring of firewall systems to detect and respond to potential threats.Identify incomplete Information Assurance Vulnerability Management (IAVM) security patches for network assets and incomplete network scans that may pose potential risk to the global information grid. Identification and mitigation of cyber security vulnerabilities strengthen overall connections to the DoD Information Network (DODIN).Ensure compliance with IAVM directives and guidelines issued by Navy.Track and manage IAVM vulnerabilities, including maintaining up to date records of vulnerabilities and remediation status.Prepare and submit reports on IAVM findings.
Qualifications:
Proven experience as a Vulnerability Analyst or similar role, with experience in a defense or government environment preferred.Proficiency with vulnerability scanning tools such as Nessus or similar.Working knowledge of Splunk preferred.Knowledge of firewall management and security configuration.Familiarity with VRAM processes and IAVM guidelines.Understanding of risk assessment/risk management methodologies-RMF preferred.Bachelor’s degree in an IT related discipline AND at least four years of experience as described above; OR nine years of relevant experience as described above.