Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
Sr IT Security/Vulnerability Management Specialist at AAC
Bethesda, Maryland, United States -
Full Time

Start Date

Immediate

Expiry Date

03 Sep, 26

Salary

0.0

Posted On

05 Jun, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Vulnerability Management, Tenable.sc, Tenable.io, Nessus, FISMA, FedRAMP, Security Assessment and Authorization, Incident Response, Risk Posture Analysis, Security Compliance, IT Infrastructure Security, Technical Documentation

Industry

Information Technology & Services

Description
AAC is seeking Senior Security Analyst focusing on Vulnerability Management to join our security compliance team. In this role, you will work closely with the Information Systems Security Officer (ISSO) and play a critical part in safeguarding organization’s IT infrastructure. You will be part of a broader IT program that provides end-to-end support—including help desk, systems, network, incident response and security services—ensuring the availability, integrity, and confidentiality of mission-critical systems. Responsibilities include, but are not limited to: ·         Lead the agency’s vulnerability management lifecycle using Tenable.sc, Tenable.io, Nessus Manager, and Nessus scanners (on-prem and cloud). ·         Analyze, prioritize, and track remediation of vulnerabilities in coordination with IT operations and system owners. ·         Maintain scan schedules, asset groups, scan policies dashboards, and reports tailored to agency infrastructure and communicate risk posture and remediation progress to relevant infrastructure, application, and cloud teams to remediate vulnerabilities. ·         Define the scanner and security center architecture, refine data flows and synchronizations, tune scanning configurations to minimize false positives and ensure the best coverage. ·         Develop and maintain documentation for system setup, operation, vulnerability management processes, exceptions, and remediation tracking. ·         Support implementation of security projects that require compliance with relevant government policies or standards. ·         Act as SME for vulnerability management tools and processes. ·         Ensure systems and practices comply with FISMA and FedRAMP related Security Assessment and Authorization (SA&A) and compliance for the organization’s IT programs. ·         Assist in coordination, implementation, communication, and enforcement of the organization’s IT security policies. ·         Support incident response. The position requires on-site presence 3 to 5 days per week. The on-site requirements are subject to change based on the needs and requirements of the organization.
Responsibilities
Lead the agency's vulnerability management lifecycle using Tenable tools to analyze and prioritize remediation of IT infrastructure risks. Coordinate with IT operations and system owners to ensure compliance with FISMA and FedRAMP standards.