Theater Vulnerability Analyst | Req#3838

Honolulu, Hawaii

Apply

Description

DecisiveInstincts, LLC  has an opportunity for a Theater Vulnerability Analyst requiring a Top Secret (SCI Eligible) clearance located in Honolulu, Hawaii.  In this role, you will be responsible for analyzing US Government (USG) cyber security posture reports and provide cyber units with expertise and fix action guidance. 

**Please note this role will require Travel up to 40% to INDOPAC Region**

Salary $90K-160K

Duties and Responsibilities

    The Theater Vulnerability Analyst will analyze USG cyber security posture reports and provide cyber units with expertise and fix action guidance. They will interface with base cyber units and provide USG leadership with depictions of sites' ability to scan (ACAS), mitigate (via MS SCCM/MECM), and maintain host-based point products mandated by the DoD. The analyst will maintain proficiency on current and future End Point Security assessment tools and assist with Vulnerability Management. They will provide and coordinate vulnerability mentor training to USG sites, create and maintain security/VM management training documentation, and interface with security technicians/ISSMs to maintain up-to-date reporting. The analyst will maintain command-wide SCCM & MECM health status, coordinate with VM teams to identify patching issues and produce status reports, and analyze network vulnerability scores. They will produce and disseminate security reports, utilize CORA reports to advise staff of findings and risk levels, and assist with cyber operations briefs. The analyst will create TASKORDs to raise security posture, track VM POAMs, augment CRR-M teams as required, maintain IP space and asset lists, and maintain various cybersecurity accounts (ACAS, PROD, ELICSAR, AFNET Compliance Tracker). They will also provide support for contract management, tracking, and processing requirements for cybersecurity personnel while ensuring all contractors follow applicable commercial and government/military standards.

    Basic Qualifications:

    • The Theater Vulnerability Analyst must possess a TS/SCI security clearance and DoD 8570.1-M certification at IAT Level 3, with one of the following: CASP+ CE, CCNP-Security, CISA, CISSP, GCED, GCIH, or CCSP.
    • They must have 2-3 years of experience executing Federal, National, DoD, USAF CIO, and US State Department requirements to assess cyber risk, identify mission sets, and defend the mission.
    • The analyst should have 2-3 years applying and advising on cybersecurity requirements, understand AF Cyber architecture and USG sites roles, and be able to travel to conduct duties (minimum 40% of the time).
    • Proficiency in Microsoft Office Suite and SharePoint is required, along with certificates for various security trainings.
    • The analyst needs 3-4 years of experience conducting Network Vulnerability Engineering functions and expertise in DoD, AF, DISA, NIST, NIAP, and USG processes.
    • This includes 3-4 years of experience with DoD approved scanning tools (e.g., ACAS) and Microsoft SCCM & MECM.
    • The analyst should be familiar with End Point Security Point Product requirements and able to analyze and develop cyber vulnerability information into understandable presentations
    **Please note this role will require Travel up to 40% to INDOPAC Region**

    Preferred Qualifications: 

    • The ideal candidate for the Theater Vulnerability Analyst role should have the ability to maintain view rights to SIPRNet and NIPRNet vulnerability tools to analyze and compile data for leadership. Desired qualifications include knowledge of vulnerability management processes, USAF Methods and Procedures Technical Order, USCYBERCOM Computer Network Defense Directives, and various compliance orders.
    • In addition, familiarity with Host-Based Security System (HBSS) and ePolicy Orchestrator functions, including producing asset lists and identifying devices for McAfee Agent installation, is highly preferred. Experience conducting discovery scans, analyzing vulnerability scan results, maintaining credentials for accurate scanning, and performing vulnerability assessments using ACAS/Tenable.sc is strongly desired.
    • The ability to receive, organize, and present vulnerability notifications and statuses is essential. Nice-to-have skills include proficiency in communication platforms and Microsoft tools, as well as experience collaborating with teams and briefing technical information to various audiences. Strong written and verbal communication skills are highly valued.
    • Preferred candidates will demonstrate leadership ability, organizational awareness, in-depth problem-solving experience, time management proficiency, and critical thinking skills.
    .
    .

    Apply Apply Later
    ← Back to Current Openings

    Share