About Us
Seamless Migration is a Service-Disabled Veteran-Owned Small Business (SDVOSB) started in 2021 with the purpose of enabling businesses and organizations through automation. Our goal is to help organizations discover, implement, and maintain solutions which evolve and mature with their ever-changing business needs. We believe in applying agile methodologies in all aspects of our business practices and use these methods to ensure effective results for our clients.
Seamless Migration is seeking a career and customer-oriented Computer Network Defense (CND) Vulnerability Specialist to join our team in Springfield, VA.
CLEARANCE
- Active TS/SCI clearance (existing clearance required to start)
- Ability to obtain and maintain a Counterintelligence (CI) Polygraph
LOCATION
Overview
- Develop and execute the organization's continuous vulnerability assessment strategy.
- Measure the effectiveness of defense-in-depth mechanisms against vulnerabilities and develop recommendations to remediate systemic security issues.
- Configure, operate, maintain, and evaluate the effectiveness of vulnerability scanning and assessment toolsets.
- Monitor, evaluate, and report on system/network misconfigurations, non-compliance, unauthorized assets, false positives, and baseline deviations.
- Assess the level of risk introduced by vulnerabilities and develop remediation strategies.
- Investigate and analyze cybersecurity incidents to ensure appropriate response activities and mitigations are applied.
- Distribute periodic vulnerability assessment reports, summaries, notifications, and an annual vulnerability assessment scorecard to CIO leadership and IT stakeholders.
- Develop and maintain documentation related to the use and operation of vulnerability assessment tools and methodologies (SOPs, assessment plans, test plans, etc.).
Qualifications
- Seven or more years of progressive, hands-on experience as a cybersecurity analyst, administrator, or engineer responsible for Enterprise vulnerability management toolsets (e.g., ACAS, Tenable, Nessus, Rapid7, AppSpider, SCAP, STIG Viewer, etc.).
- Demonstrated proficiency in applying computer networking concepts, protocols, and security methodologies to Enterprise information systems.
- Experience in developing and applying risk management methodologies and processes (e.g., methods for assessing and mitigating risk).
- Proficiency in securing and evaluating information systems for compliance with DISA STIGs.
- Excellent initiative, problem-solving, and analytical skills with the ability to work both independently and as part of a team.
- Strong written, verbal, communication, presentation, and reporting skills.
- Meet the minimum credential requirements for a Cyber IT/Cybersecurity Workforce (CSWF) position as defined for Vulnerability Assessment Analyst (541) Intermediate Level.
- CompTIA Security+ ce, GIAC Security Essentials Certification (GSEC), or Systems Security Certified Practitioner (SSCP).
NICE TO HAVE
- Experience operating in a Cybersecurity Operations Center.
- Experience in engineering/administering a variety of IT devices/tools such as Windows, Linux, Cisco, Citrix, VMWare, Active Directory, Splunk, ePO, Trellix, Tanium, Ivanti, Sentinel One, CrowdStrike, etc.
- Experience conducting penetration testing, packet inspection/analysis, malware detection, data loss prevention, incident response, and forensics.
Benefits - 100% paid Medical, Dental & Vision for Our Employee
- 6% 401K match (Vested Immediately)
- 29 Days' PTO
- 15 Vacation Days
- 11 Federal Holidays
- 3 Days Sick Leave
- Flexible Work Schedule
- Tuition/Certification Reimbursement
- Growth Opportunities w/in an Emerging Defense Company