Senior Vulnerability Analyst

AnaVation is seeking a Senior Vulnerability Analyst to join our team and support our mission critical customer in Reston, VA. As our Senior Vulnerability Analyst, you will provide Subject Matter Expertise support to maintain Vulnerability Management Program requirements including, but not limited to, maintaining the patch repository, issuing alerts and bulletins, and tracking compliance. Additional responsibilities would include coordinating periodic auditing and testing and responsibility for overall governance supporting Vulnerability Management.

Required Qualifications:

• Clearance: Active TS/SCI Clearance
• Education & Years of Experience: Bachelor’s degree in Computer Science or relevant field and 12+ years of experience related to specific functional area. (May substitute Master’s degree in lieu of 2 years of experience).
• Certifications: CompTIA Security+ or equivalent IAT Level II certification
• Experience and knowledge on:
• Working collaboratively across cross-functional teams of all experience levels.
• Detailed knowledge of system security vulnerabilities and remediation techniques, including testing and the development of exploits.
• Detailed technical knowledge in security engineering, system and network security, authentication, and security protocols.
• Skilled in risk management, business risk analysis, and making complex business/risk trade-off recommendations and decisions.
• Experience in penetration testing and vulnerability analysis in modern technologies such as cloud, mobile, wireless, and cross domain solutions.
• In depth knowledge and experience working with Assured Compliance Assessment Solution (ACAS) scanning environments.
• Thorough understanding of DevSecOps Pipeline scanning in supporting development and alerting thresholds.
• Solid understanding of Penetration Testing environments and Cloud tools.
• Ability to provide recommendations for enhancing Detection and Alerting thresholds and Insider Threat capabilities.

Preferred Qualifications:

• Security certifications: Security+, CCNA Security, CySA+, SSCP, CCSP, or equivalent certification
• AWS, Cloud certifications