Overview

Responsibilities

• Lead endpoint vulnerability management operations ensuring comprehensive coverage across enterprise endpoints and systems.
• Operate endpoint vulnerability assessment tools leveraging both agent- and network-based scanning methodologies.
• Analyze and interpret scan results to identify trends systemic issues and root causes of vulnerabilities.
• Integrate vulnerability management use cases into the organizations Security Information and Event Management (SIEM) solution.
• Develop and maintain automated and manual reporting dashboards and alerts to communicate vulnerability status remediation progress and compliance posture.
• Secure and manage endpoints across diverse environments including cloud Infrastructure-as-a-Service (IaaS) containerized environments and mobile database and enterprise platforms.
• Implement security controls for multiple operating systems such as Windows macOS Linux Unix (including Red Hat Enterprise Linux Oracle Enterprise Linux and Solaris).
• Support the protection and compliance of federal business systems supporting financial management budget procurement travel property HR/payroll and data warehousing functions.
• Apply cybersecurity principles to secure clinical and/or scientific instrumentation as well as Operational Technology (OT) systems (preferred).
• Conduct risk analyses and provide mitigation recommendations based on vulnerability data and threat intelligence.
• Collaborate with cybersecurity engineering SOC and compliance teams to prioritize remediation efforts and strengthen endpoint defenses.
• Develop and document standard operating procedures (SOPs) and contribute to continuous process improvement.

Required Qualifications

• Demonstrable credentials reflecting knowledge skills and experience operating endpoint vulnerability assessment tools and analyzing and interpreting results.
• Experience with agent- and network-based vulnerability scanning methodologies.
• Experience integrating vulnerability management use cases into SIEM platforms.
• Experience in content development (manual and automated reporting dashboards alerts) for systemic issue identification root cause analysis vulnerability analysis remediation status and compliance with regulations and directives.
• Experience securing cloud IaaS and containerized environments mobile platforms database platforms Windows and macOS operating systems and Linux/Unix systems (e.g. Red Hat Enterprise Linux Oracle Enterprise Linux and Solaris).
• Experience securing federal business systems supporting financial management budget procurement travel property HR/payroll and data warehousing functions.
• Experience securing clinical and/or scientific instrumentation (OT experience preferred).
• Experience performing risk analysis to identify and address potential vulnerabilities and threats.

Preferred Qualifications

• Experience supporting DHS or other federal agencies in vulnerability management or endpoint protection roles.
• Familiarity with tools such as Tenable Qualys Rapid7 or similar endpoint scanning technologies.
• Experience developing and maintaining SIEM dashboards and vulnerability analytics for federal compliance frameworks (e.g. NIST SP 800-53 FISMA FedRAMP).
• Strong scripting and automation skills (e.g. PowerShell Python) for vulnerability data correlation and remediation tracking.
• Demonstrated leadership in endpoint protection patch management and continuous monitoring programs.

About cFocus Software

Equal Employment Opportunity Statement