Vulnerability Management SME
: Job Details :

STIG Compliance/Vulnerability Management SME Candidates must be local to Fairmont, WV or Boulder, CO and able to come onsite 5 days a week. An active Top Secret Security Clearance is required The STIG Compliance/Vulnerability Management Subject Matter Expert (SME) will work on the ISSO team to help manage the Vulnerability Management plan as well as institute a STIG compliance program. Additionally, as part of the Information Assurance team, develops assessment and validation strategies to ensure compliance. As STIG Compliance/Vulnerability Management SME be capable of understanding a multitude of different technologies, including but not limited to, Windows (workstations and desktops), Linux, Juniper, Cisco, appliances like iDrac, and other applications. Additionally, they need to not only be able to use Tenable/ ACAS, but also should be familiar with EvaluateSTIG, Compliance Viewer and other tools. As the STIG Compliance/Vulnerability Management SME, you will work either independently or as part of a team to achieve critical mission objectives, ensuring smooth operations for the customer. What Will You Do Evaluate security risks on systems Evaluate STIG compliance Execute and manage the NCSC Vulnerability Management Plan Create and maintain compliance scan policies Maintain a master asset list Troubleshoot scan issues and coordinate with appropriate team members Continuously research emerging threats to the environment in order to disseminate the information to all stakeholders, immediately assess the known environment for presence of the vulnerability, and work with the SOC and SE&O to protect the NOAA environment Ensure system compliance against federal, DOC, NOAA policies Identify & document all non-compliant areas Support Assessment and Authorization activities Conduct, operate, and maintain vulnerability/compliance assessments and the resulting data and reports Author and maintain SOPs and runbooks Other duties as assigned Job Qualifications Bachelor's degree in Information Technology, Cybersecurity, or related field with 8 or more years of STIG Compliance/Vulnerability Management experience to including implementing and evaluating STIG controls and security baselines; additional years of experience required in lieu of a Bachelor's degree. Significant experience with NIST Cybersecurity Framework and/or risk management within the Intelligence Community. 2+ years of project management experience. Experience being part of a high performing A&A teams and adapting standards to create best practices . Demonstrate knowledge of ports and protocols Demonstrate knowledge of DISA STIGs and related tools Possess the knowledge of security best practices, security solutions, and methodologies for risk management per NIST Cybersecurity Framework guidelines. Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities. Familiar with the management, operational, and technical aspects of IT Security in a complex environment. Clearance Requirement An active DoD Top Secret clearance #CJ About Equiliem Equiliem believes in empowering success. It's our job to cultivate relationships that connect people and employers in a way that is inclusive, intelligent, and allows both to thrive. Across the U.S., leading companies in healthcare, government, engineering, manufacturing, professional services, and energy rely on us for their workforce solutions. Our recruiting and HR services include contract and direct hire staffing, Payrolling/EOR, Independent Contractor Compliance, and Managed Services. For almost 30 years, we've helped shape our industry. Today, we continue to research, ask questions, and continuously enhance the candidate journey and client experience. EEO Employer Equiliem is an equal opportunity employer. We do not discriminate or allow discrimination based on race, color, religion, creed, sex, age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Equiliem will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or .