Note: The job is a remote job and is open to candidates in USA. Summit 7 is dedicated to protecting the US defense industrial base from cyber threats and fostering growth opportunities. They are seeking a Vulnerability Analyst to conduct vulnerability assessments, manage remediation efforts, and collaborate with security teams to enhance technical operations.
Responsibilities
- Conduct regular vulnerability scanning using industry standard tools
- Ingest vulnerability reports for analysis
- Initiate device patching for discovered vulnerabilities
- Create manual patching scripts for vulnerabilities as needed
- Test developed patches in controlled/sandboxed environments
- Research newly discovered vulnerabilities and assess their potential impact
- Prioritize remediation efforts to meet company expectations and service level agreements
- Assist with vulnerability exploitation recommendations during Red Team operations
- Assist with security assessments during Red Team operations
- Assist with validating security controls during Red Team operations
- Create professional reports and/or dashboards for all vulnerability scanning and remediation efforts
- Be able to discuss vulnerability scanning and remediation efforts for both executive and technical audiences
- Work with members of the SOC and NOC to support ongoing vulnerability remediation efforts
- Support audit and compliance activities related to vulnerability scanning and remediation
- Work with colleagues to improve skills needed for the advancement of overall Red Team goals
Skills
- 2+ years of experience in vulnerability management, security assessments, or a related role
- Experience with vulnerability management platforms such as Qualys, VSA, and Tanium
- Familiarity with CVSS, CVE, and other vulnerability scoring/risk rating systems
- Familiarity with security frameworks
- Familiarity with patch management and system hardening processes and procedures
- Strong scripting experience
- Strong attention to detail
- Strong time management and organizational skills
- Security+ (Required)
- Certified Ethical Hacker (CEH)
- CompTIA Pentest+
- Vendor-specific certifications or training certificates for vulnerability management platforms such as Qualys, VSA, and Tanium
- Bachelor's degree in IT, Computer Science, Cybersecurity, or a related field
- Azure Gov Cloud and Office 365 GCC/GCCH experience
Benefits
- Excellent health/dental benefits from BCBS and Ameritas
- See into the future with our luxurious VSP vision benefits
- Prepare for the long-haul courtesy of our 401k with company matching
- 10 days' vacation, 7 days sick time
- Bonuses and salary increase potential via our certifications plan
Company Overview