Vulnerability Management Cybersecurity Engineer

Avint is seeking a motivated career and customer-oriented Lead Vulnerability Management Cyber Security Engineer to join our team in the DMV area to provide unparalleled support to a federal agency's cyber security goals/

In this position, the candidate will lead the cyber team in support of HUD OIG’s cyber security mission. Along with leading the team and interfacing with the customer on a regular basis, the role includes leading the vulnerability management through extensive knowledge and experience with identification and remediation of issues. You will leverage your Splunk and Tenable experience to increase the HUD OIG cyber posture and report out to the HUD OIG customer.

Position Responsibilities:

• Leading the organization’s Vulnerability Management (VM) program and capabilities.
• Collaborating with key stakeholders including senior leadership to research, develop and implement an efficient architecture to discover vulnerabilities.
• Managing the entire vulnerability lifecycle from discovery, triage, remediation, and validation.
• Support Vulnerability related Change Requests.
• Troubleshooting new and current data collection issues.
• Managing day-to-day workflow to ensure vulnerabilities are remediated within proper timelines.
• Helping asset owners create effective solutions to safely patch infrastructure at scale, including assisting with automated deployment of common patches.
• Troubleshooting and resolving system issues and ensure resolutions are documented.
• Creating and evolving a risk prioritization framework that accounts for multiple factors including vulnerability severity, system function, and network accessibility.
• Perform Vulnerability Analysis and deliver reports to Senior HUD OIG leadership.
• Deploying and managing commercial and custom Splunk add-ons required to fetch data from specific sources.
• Designing, developing, and implementing data models while aggregating several data sources
• Implementing Splunk upgrades
• Extracting specific data attributes via regular expressions and transformations
• Creating custom dashboards, writing queries, and generating on-demand and saved search reports, and setting up alerts and notifications.
• Integrating Splunk with other systems via API or other similar methods
• Developing and implementing solutions to integrate data provided into Splunk Indexes
• Analyzing data in Splunk indices to determine relevant queries to populate specialized reporting dashboards and modify Splunk Enterprise Security default searches to remove irrelevant alerts.
• Designing, building, testing, and maintaining scalable and stable technology solutions to meet mission systems monitoring goals.
• Performing automation tasks through scripting and testing – Shell scripting and Python.
• Creating process automation including scripting and API integrations.
• Performing security control assessments and develop associated deliverables (e.g., SAR)

Requirements

• BA/BS in Information Security or related IT field and 8+ years of IT experience.
• 5+ years of using SIEM tools.
• 5+ years of Vulnerability Management experience, especially with vulnerability scanners (e.g., Rapid7, Tenable, etc.) and experience remediating issues with system owners
• Working knowledge of security risk oversight, CVSS (Common Vulnerability Scoring System), CVE (Common Vulnerabilities and Exposures), and technical security vulnerability remediation/mitigation
• Experience with Tenable Security Center and Nessus Scanners
• 3+ years of experience with Splunk performing systems administration, including performing installation, configuration, monitoring system performance and availability, upgrades, and troubleshooting.
• 2+ years of experience with designing, implementing, configuring, operating, or testing IT systems or security infrastructure.
• Demonstrate strong communication skills (oral and written) and the ability to work with both teammates and senior leadership.
• Required: Relevant Cyber security Certification (CISSP, CISA, CISM, Sec+) ·
• US Citizenship Required
• Ability to pass a USG Background Investigation. Secret Clearance Preferred.
• Leads working sessions to solicit ideas and develop solutions.
• Proactively lead teams in the execution of complex tasks with minimal direction and produces high quality results.
• Serve as a Career Manager responsible for performance management and professional development.
• Proficiency in Microsoft Office Suite of tools (Excel, Word, Teams, Outlook)

Benefits

Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, a unique 401K plan, and generous PTO and Federal Holidays.

Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development!

Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity and Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.