| Employer | Prime Time Consulting |
| Created | 05/01/2024 |
| Reference | 240279853 |
| Country | United States |
| State | Maryland |
| City | Annapolis Junction |
| Zip | 20701 |
| Salary | - |
|
Vulnerability Manager Level 2
Prime Time Consulting provides clients with expert intelligence analysis services. Our clients include defense contractors, industrial and service corporations, and departments and agencies of the U.S. Federal Government.
We are actively searching for a Vulnerability Manager, located in Maryland, to support our team. We have varying levels of similar positions, depending on years of experience and education.
Job Description:
Vulnerability management requires preemptive actions to identify, remediate, and mitigate vulnerabilities to prevent exploitation. The VM receives vulnerability input, direction, and guidance from multiple sources and takes directed action to effectively mitigate vulnerabilities in order to protect networks. Leverages an operational understanding of current
vendor remediation's to prioritize vulnerability escalation procedures and integrates continuous monitoring to ensure mitigations fall within prescribed timelines.
Job Responsibilities Include:
• Knowledge of cyber threats and vulnerabilities.
• Determine overall Common Vulnerabilities and Exposures (CVE) priority when threat activity
• is identified; report incidents that may cause immediate and/or ongoing impact to the environment.
• Monitor and provide periodic system owners vulnerability mitigation completion updates.
• Knowledge of system and application security threats, vulnerabilities, and cyber attackers.
• Monitor external data sources to determine which security issues may have an impact on the enterprise.
• Identify, develop, and determine mitigation or remediation actions for system and network vulnerabilities.
• Communicate written and verbal information in a timely, clear, and concise manner.
• Apply cybersecurity and privacy principles to organizational requirements (relevant to
confidentiality, integrity, availability, authentication, non-repudiation).
• Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution
attacks).
• Knowledge of system administration, network, operating system hardening techniques, and the risk management process.
• Knowledge of specific operational impacts of cybersecurity lapses and organization's threat
environment.
• Recommend impact/risk assessments to identify systemic security issues based on the analysis of vulnerability and configuration data.
• Document and escalate incidents (including event's history, status, and potential impact for
further action); recommend mitigations that will have immediate impact to the environment.
• Perform after-action reviews of team products to ensure completion of analysis.
• Lead and mentor team members as a technical expert.
Qualifications:
Position requires security clearance with successful Polygraph.
COMPANY PERKS
We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, sex, age, national origin, disability, Veteran status, or any other category protected by federal, state, or local laws.
PI240279853 |
|
