Applied Memetics LLC is seeking one (1) Systems Engineer, Junior, (Vulnerability Analyst) candidate for a Chantilly, VA, location in support a Veterans Affairs program.
The specialist will provide the following job functions under direction from a more senior specialist:
Provide workstation, laptop, and printer hardware and software support/troubleshooting, imaging, and patching, which is a strong plus
Test and image desktops and laptops using Microsoft Operating System Deployment using the VA provided images.
Ensure all open tickets requiring follow-up work and/or calls are resolved within 48 hours.
Use Nessus, SCCM, SCOM, and SQL reports and product logs to locate workstations and servers that have inventory, deployment, patching or other issues, and then use provided scripts, tools, and vendor products to troubleshoot and resolve the issue and verify resolution.
Build and deploy packages and maintain collections using SCCM.
Provide specific vulnerability remediation support for all devices, including laptops, workstations, printers, and network devices (including mobile devices), based on the Regional Director’s priorities, and remediate 98 percent of vulnerabilities.
Provide onsite or remote patch and vulnerability support using SCCM and other tools. This includes MS patching, Nessus scan remediation, unauthorized software remediation, baseline image deficiencies, etc.
Perform vulnerability scans and audits on VA sites’ systems to support VA applications and report results to developers for remediation and/or mitigation
Utilize automated scanning tools and a host of security-related, web-based applications, to report, identify and track assets’ vulnerabilities throughout the systems lifecycle
Conduct operating system, application, and database vulnerability assessments on various Information Systems as part of the Independent Verification and Validation scanning program and Certification and Accreditation process for enterprise systems
Conduct remediation, vulnerability and compliance scans, resolve connection and access issues to ensure accurate scan data, analyzes vulnerability assessment data, creates reports, supports OIG and VA customers security assessment efforts
Collects and analyzes cyber event information and performs threat or target analysis duties.
Provides operations for persistent monitoring on a 24/7 basis of all designated networks, enclaves, and systems. Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
Provides oversight of incident data flow and response, content, and remediation, and partners with other incident response centers in maintaining an understanding of threats, vulnerabilities, and exploits that could impact networks and assets
Performs the role of incident coordinator for all IT security events requiring focused response, containment, investigation, and remediation
Providesdaily summary reports of network events and activities and delivers metric reports
Perform Independent Verification and Validation activities to include:Update/create entries within the current vulnerability management tool
Security configuration compliance verification
Application configuration verification
Network/ systems security evaluations
Bachelor’s degree in Information Technology, Computer Science, or related technological field (Eight (8) years of relevant technical experience may be substituted for the Bachelor’s Degree).
Experience on a Help Desk, or desktop support function with demonstrated experience in patching is helpful.
Experience must include:
Experience performing security patch remediation on desktop computers with Microsoft operating environments
Experience understanding security scan results and providing mitigations to findings.
Experience providing helpdesk support.
Excellent written and oral communication skills
Strong interpersonal and relationship-building skills, conducive to team development
Ability to multitask in a challenging, fast-paced environment
Experience using the Nessus tool
Experience with Network Attached Storage
Experience with network vulnerability testing
US Citizenship is required. Selected applicants will be subject to a government investigation and must meet eligibility requirements and obtain Government-granted access.