Vulnerability Analyst Lead

Edgewater Federal Solutions is seeking a Vulnerability Management Lead.  The VM team’s portfolio of activities includes providing vulnerability detection and remediation oversight, vulnerability research, secure baseline compliance, web application security, host-based security, network security, and acting as security subject matter experts.

VM Lead Technical Competencies:

• Extensive knowledge and hands-on experience with a variety of Vulnerability Management Tools such as Tenable, DB Protect, Netsparker, Qualys, etc.
• Expert knowledge of the Vulnerability Management lifecycle
• Proven track record of designing, implementing, and managing a Fortune 100 level Vulnerability Management Program
• Strong knowledge of networking, operating systems, databases, and web applications
• Strong knowledge of cybersecurity operations (Cyber Threat Intelligence, Penetration testing, & Incident Response)
• Deep knowledge and experience of performing both manual and automated asset discovery and enumeration
• Deep knowledge and experience of systematic and data-driven asset prioritization
• Expert knowledge and successful application of risk management frameworks

The successful candidate will have:

• Ability to obtain a Public Trust clearance.
• Passion for learning about current and emerging information security threats and vulnerabilities
• Strong understand of Enterprise Vulnerability management
• A love for identifying gaps, providing solutions, and improving existing processes
• Ability to collaborate with other teams to improve security across an enterprise
• Strong Project Management skills
• Previous leadership experience

Soft skills:

• Strong customer service focus to meet the needs of internal and external customers.
• Professional, pleasant, and polished demeanor.
• Strong problem-solving capabilities and the ability to effectively communicate solutions.
• Excellent verbal and written communication skills
• Ability to build strong relationships with stakeholders at all levels
• Strong public speaking and presentation skills
• Experience and comfort leading large meetings 

Technical skills \ Qualifications:

• 8 or more years of professional work experience with at least 5 specialized in cyber security
• Bachelor’s degree (additional years of experience in cyber security and/or military experience may reduce this educational requirement)

• One or more certifications in information security (such as Sec+, CEH, CISSP, SSCP, etc.)
• Demonstrated expertise with
• Windows Endpoints and Server
• Unix/Linux
• macOS
• IOS
• Android
• Expert:
  • Troubleshooting skills
  • Data analysis skills

• Strong cyber security knowledge and experience to include:
  • Host security (Such as Tenable)
  • Web Application security (Such as NetSparker)
  • Secure OS baselines (CIS, STIG, etc.)
  • Vulnerability Analysis
  • SIEM Tools (Such as Splunk)
• Proficient in MS Office (Word, PowerPoint, Excel)

Experience with and/or knowledge of:

• Hardening AWS, GCP, and Azure clouds
• GitHub Enterprise
• Administering Symantec Data loss prevention
• Hardening Dev/Sec/Ops Pipelines and Developer workflows
• Static Application Security Testing (SAST)
• Dynamic application security testing (DAST)
• Interactive application security testing (IAST)
• Runtime application self-protection (RASP)
• Microsoft Power Query, Power Charts, etc.
• SPL queries and building Splunk Dashboards
• Database Security Vulnerability and Compliance (Such as DbProtect)

About Us: 

Edgewater Federal Solutions is a privately held government contracting firm located near Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services, and timely delivery. Edgewater is ISO 9001, 20000-1, 27001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2024.

It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other status protected by applicable law.