Current Statistics
1,626,420 Total Jobs 259,563 Jobs Today 17,768 Cities 222,696 Job Seekers 146,729 Resumes |
|
|
|
|
|
|
Lead Vulnerability Management & Cloud / Container Security SME - Washington DC
Company: Valiant Solutions Location: Washington, DC
Posted On: 05/05/2024
Position Description Are you a seasoned security specialist with expertise in vulnerability management and compliance in both cloud and on-premise environments? Are you looking for a new challenge to expand your knowledge in security and help us advance our client's security program, including container security? This might be the role for you! In this position as a Lead Vulnerability Management & Cloud / Container Security SME, you will be responsible for leading a small team to operate a vulnerability management and compliance program covering operating system web application, and container scanning. This role will see you working with a variety of technical and compliance teams across the organization. Strong communication and organizational skills are a must. This is a hands-on leadership role. You will actively work on the tools as a subject matter expert along with leading the team. - Candidates will join a fast-paced and creative cybersecurity team. Valiant Solutions is a company that cares about its employees- we've been named one of the Best Places to Work in the Washington DC area TEN years in a row! - If you are interested in learning more about Valiant and this opportunity, we invite you to apply now! - This position allows for 100% remote work. Remote work necessitates a high-level trust in our employees and we strictly adhere to the details found below in our Remote Work Policy. - Responsibilities Include: Vulnerability Management Program - Provide opportunities for proactive vulnerability management by reviewing enterprise risk through internal and external data sources
- Coordinate with Threat Intelligence and Threat Hunt functions to establish and define agency specific risk and mitigation priorities
- Enterprise Vulnerability and Risk sharing and coordination
- Routine and targeted vulnerability communication and sharing activities
- Explanation of problems, vulnerabilities, and risk to clients
- Assist with Tenable.sc/io and Nessus Manager Enhancements, examples:
- Advise on tool enhancements for: Design, configuration, and operation of Tenable
- Assist in troubleshooting and resolution of technical issues
- Configuration of vulnerability reports and dashboards (for VM program)
- Assist with Web Application scanning program enhancements, examples:
- Advise on tool enhancements for: Deploy and configure web application scan tools
- Assist in troubleshooting and resolution of web application scan issues
- Perform automated authenticated and unauthenticated scans
- Planning and executing the continuous advancement of tools alongside operations
- Recommending new solutions to the government
- Researching enhancement opportunities
Container and Cloud Security - Management, operation and enhancement of Container security tools not limited to Palo Alto Prisma (Twistlock) and Stackrox
- Full operational support for Cloud and Container Security Tools
- Design, configuration and operation of cloud & container security tools
- Troubleshooting and resolution of technical issues
- Continuous advancement of the configuration alongside operations
- Increase enterprise enrollment / onboarding of systems into tools
- Provide administrative support to users and resolution to issues
- Tune policies, rules and alerts to match agency policies and established settings
- Define new policies, rules and alerts to enhance security visibility
- Coordinate with SOC and IR functions for resolution and tuning
- Coordinate with Threat Intel and Hunt functions for reviews of enterprise risk
- Coordinate with log and analysis teams to enhance data shipped to logging platform -
Position Requirements: 10+ years of experience in Information Technology: The successful candidate will demonstrate deep technical knowledge in the management and configuration of operating systems, networks, and software. This experience will include in-depth knowledge of OS authentication mechanisms and permissions and a solid understanding of networking. Acceptable experience may be solely in a security context or in software development or systems engineering. 6+ years of experience in Vulnerability Management: The successful candidate will have at least six years of experience supporting a vulnerability management program for a large organization. This experience must have included the design and deployment of highly available vulnerability scanning solutions (including compliance scanning). This experience must also include the design, implementation, and configuration of Tenable Security Center, Tenable.io/sc. The candidate must demonstrate depth of understanding of a variety of operating system and software vulnerabilities 8+ years of experience in Cybersecurity: The successful candidate must demonstrate broad security experience to perform in this position. The candidate's security knowledge must include focus on vulnerabilities, risks, and security mechanisms that are common in today's government systems. 2+ years of container security experience: The successful candidate will have designed, deployed, and operated a container security tool such as Twistlock, Stackrox, or Black Duck. The candidate must demonstrate knowledge of container technologies and understand the associated security challenges and how they can be mitigated. Required qualifications: |
|
|
|
|
|
|