Vulnerability Management Analyst (VMA) Wiesbaden
GDIT has an opportunity for a Vulnerability Management Analyst (VMA) supporting U.S. Army Europe on our Enterprise Mission Information Technology Services (EMITS) program in Wiesbaden, Germany.HOW A VULNERABILITY ANALYST WILL MAKE AN IMPACTThe VMA will work closely with the Cybersecurity Compliance Team - to support the USAREUR-AF Mission Partner environment connected systems through the vulnerability management and Risk Management Framework (RMF) process.Maintain configuration items and executing functions on the vulnerability management platform, which includes but not limited to ACAS & Source Code scans, STIG Validation in support of DISA, DoD, USEUCOM, and USAREUR-AF guidelines and proactive vulnerability detection.Composing essential documentation (procedures, compliance and remediation reports, continuous monitoring, etc.), providing analysis and metrics on vulnerabilities, and driving remediation of vulnerabilities throughout the organization.Develop Compliance (Credentialed Scans, CVSS10, OS, HBSS, PKI, AV) and Continuous Monitoring (RMF Controls) reporting dashboards and metricsFacilitate proactive remediation or mitigation of new vulnerabilities by collecting information from threat and vulnerability feeds, analyzing the impact/applicability to our environment and communicating applicable vulnerabilities and recommended remediation actions to the impacted teamsProvide technical support to system and technology owners to propose mitigation and remediation solutionsAssist with routine compliance and audit functions to ensure regulatory scanning requirements are satisfiedDocument and report on processes and proceduresProvide input to leadership for enhancing the vulnerability management strategyStay current on security industry trends, attack techniques, mitigation techniques, security technologies and new and evolving threats to the organization by attending conferences, networking with peers and
Anforderung: Facilitate proactive remediation or mitigation of new vulnerabilities by collecting information from threat and vulnerability feeds, analyzing the impact/applicability to our environment and communicating applicable vulnerabilities and recommended remediation actions to the impacted teams, Security Clearance Required: Secret Clearance to begin work and the ability to obtain a Top Secret-SCI clearance, Experience: 3+ Years of Information Security Experience, working with Vulnerability management tools as well as 5+ years combined IT Systems experience, Certifications: Must have one of the following DoD 8570 IAT III Level certifications: CASP, CISA, CISSP, GCIH CISM, GSLC
Arbeitsstelle: Management