Junior Vulnerability Assessment Team Analyst - Hybrid

Job Description:

XOR Security, An Agile Defense Company is currently seeking several Junior Vulnerability Assessment Team Analysts to support an Agency-level SOC at DHS. The SOC program provides comprehensive Computer Network Defense and Response support through 24×7×365 monitoring and analysis of potential threat activity targeting the enterprise.  VAT Analysts will conduct security event monitoring, advanced analytics and response activities in support of the CND operational mission.  To support this vital mission, XOR staff are on the forefront of providing Advanced CND Operations, and Systems Engineering support to include the development of advanced analytics and countermeasures to protect critical assets from hostile adversaries. To ensure the integrity, security, and resiliency of critical operations, we are seeking candidates with diverse backgrounds in cyber security systems operations, threat analysis, continuous monitoring and vulnerability assessment.  Strong written and verbal communications skills, researching and analysis skills, and attention to detail. The ideal candidate will have a solid understanding of operating system and application vulnerabilities, with hands-on experience conducting enterprise-level vulnerability scans and network penetration testing.

Required Qualifications:

• Onsite twice a week
• ACTIVE SECRET CLEARANCE REQUIRED. In addition to the specific clearance requirement, all personnel must have a current background investigation (BI) or obtain a favorable BI before joining the program.
• BS degree Science, Technology, Engineering, Math or related field and 1+ years of prior relevant experience. Relevant experience is within one of the following areas pentesting, security technical assessments or supporting vulnerability scanning/management program.
• Expertise and experience conducting assessments and vulnerability scans against web, database, operating system, wifi and network devices using DHS CDM vulnerability scanning tool suites.
• Experience customizing and maintaining scan polices, scan schedules, inventories, zones, and repositories on scanning tools.
• Experience providing formal and adhoc reports on security vulnerabilities
• Experience reviewing scan results to ensure accurate findings
• Experience the vulnerability assessment component of DHS Audits and FISMA security authorization, and on-going authorization activities.
• Detailed oriented, strong problem solving abilities with an analytic and qualitative eye for reasoning under pressure
• Self-starter with the ability to independently prioritize and complete multiple tasks with little to no supervision
• Strong written, oral and presentation communication skills
• Expertise with DHS CDM tools, specifically vulnerability scanning tools suite.
• Tenable Security Center, Appdetective, WebInspect and Burp Suite
• Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell

Desired Qualifications:

• Prior Pentesting experience within DOD, or US Federal Civilian agency

Closing Statement:

XOR Security, An Agile Defense Company offers a very competitive benefits package including health insurance coverage from the first day of employment, 401k with a vested company match, vacation and supplemental insurance benefits.

XOR Security, An Agile Defense Company is an Equal Opportunity Employer (EOE). M/F/D/V.

Citizenship Clearance Requirement
Applicants selected may be subject to a government security investigation and must meet eligibility requirements - US CITIZENSHIP and SECRET CLEARANCE REQUIRED.