Senior Risk & Vulnerability Analyst (15.09)
Washington, District of Columbia, United States
Full Time Senior-level / Expert Clearance required USD 150K
OCT Consulting, LLC
We look for talented consultants with experience at leading consulting firms and expertise in our practice areas. OCT Consulting provides all staff with a competitive benefits package and opportunity for professional growth. If this sounds like...OCT Consulting, LLC is an SBA-certified, 8(a) small business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology.
OCT is currently looking for a Senior Risk & Vulnerability Analyst This position is contingent upon contract award.
The Planning Office’s risk analysis and risk prioritization function identifies and prioritizes cybersecurity risks to national critical infrastructure to inform the development of cyber operations plans and programs. The Planning Office integrates information on cyber threats, vulnerabilities, and consequences, and uses resources and capabilities from across public and private sector stakeholders to identify, analyze, and prioritize cybersecurity risks of national significance. The Planning Office also works closely with gov Intel and the Intelligence Community (IC) to ensure cyber threat intelligence is integrated into risk analysis and joint cyber defense plans.
Role:
•Support the development of risk analysis models, tools, and methodologies to enable risk prioritization.
•Support the development of standard risk analysis policies, standard operating procedures, and similar documents to ensure standardized approaches across the Planning Office.
•Support the development of risk analysis processes and procedures that incorporate data and capabilities from other offices, partners, and nonfederal partners.
•Identify and collect requirements to support the development of roadmaps, strategies, or plans for analytic tools, software, and platforms.
•Support the development of methodologies, policies, and procedures for assessing the risk reduction impact of Planning Office planning and operations.
•Identify existing information and production efforts on cyber threats, vulnerabilities, and consequences.
•Prepare recommendations to fill analytic gaps and support risk prioritization.
•Provide data science expertise to support data integration efforts.
•Monitor intelligence products for the relevance to cyber defense operations and develop recommendations for how to incorporate this intelligence into cyber defense plans and operations.
•Develop and implement, processes for integrating cyber threat intelligence from industry partners with USG intelligence to assist in developing a common operating picture that informs cyber defense plans and operations.
Requirements
Requirements:
•Establish and maintain an effective structure for information management and sharing with appropriate stakeholders via agency provided and/or authorized sharing mechanisms which currently include Intelink, SharePoint, Teams, and Confluence/Maestro.
•Minimum of 8 years of experience using cyber threat intelligence and cyber vulnerability data to develop cyber risk analyses that inform organizational prioritization and cyber operations.
•This experience must demonstrate proficiency in understanding how to use various data sets and sources of information to develop a defensible and repeatable risk analysis methodology.
•Bachelors Degree or equivalent
•US Citizen
•Must possess and maintain a Top-Secret security clearance and eligibility for access to Sensitive Compartmented Information (SCI).
Benefits
Benefits:
The position includes competitive compensation and a full suite of benefits:
• Medical, Dental, and Vision insurance
• Retirement savings 401K plan provided by an industry leading provider with 3% employer contributions of the employee’s gross salary
• Paid Time Off and Standard Government Holidays
• Life Insurance, Short- and Long-Term disability benefits
• Training Benefits
Salary Range: $150,000-175,000 to commensurate with experience, education, etc.
About OCT
OCT Consulting LLC is a certified SBA 8(a), minority-owned, small, disadvantaged business providing professional services and information technology solutions to the Federal government and commercial clients. Founded in 2013, we bring the advantage of agility in operations along with a management team with a track record of leading successful engagements at major Federal government agencies.
OCT is committed to a diverse and inclusive workplace. OCT is an equal opportunity employer and does not discriminate based on race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Tags: Clearance Confluence Cyber defense Risk analysis Security Clearance SharePoint Strategy Threat intelligence Vulnerabilities
Perks/benefits: 401(k) matching Competitive pay Health care Insurance
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open IT Security Engineer jobs
- Open Security Researcher jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs