NIH Infrastructure Scanning Analyst
Job Location:
Bethesda, MD - USA
Monthly Salary:
Not Disclosed
Posted on:
3 days ago
Vacancies:
1 Vacancy
Job Summary
cFocus Software seeks a Infrastructure Scanning Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
Duties:
Qualifications:
- Public Trust Clearance
- B.S. Computer Science Information Technology or a related field
- 5 years of experience performing enterprise vulnerability assessments.
- Experience operating enterprise vulnerability scanning platforms.
- Experience performing credentialed host and network vulnerability assessments.
- Experience supporting Federal cybersecurity programs or large enterprise environments.
- Experience interpreting vulnerability data and developing remediation guidance.
Duties:
- Perform credentialed host network application and database vulnerability scans across NIH/OD-managed systems.
- Schedule and execute recurring vulnerability assessments in accordance with Government-defined scanning frequencies.
- Perform specialized vulnerability assessments for High Value Assets (HVAs) and other designated systems.
- Validate scan coverage to ensure all approved assets are included within the enterprise vulnerability management program.
- Maintain scan schedules while minimizing operational impact.
- Operate administer and maintain the NIH/OD vulnerability scanning infrastructure.
- Configure optimize and maintain enterprise vulnerability scanning tools and supporting services.
- Ensure scanning infrastructure provides comprehensive enterprise visibility and situational awareness.
- Support integration between NIH/OD vulnerability management tools and existing enterprise vulnerability management capabilities.
- Maintain operational readiness of vulnerability scanning platforms.
Required Experience:
Senior IC
About Company
Our exclusive ATO as a Service⢠software & expert services automate FISMA RMF & FedRAMP compliance.