Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Sr IT Security/Vulnerability Management Specialist

AAC

Bethesda, MD

Sr IT Security/Vulnerability Management Specialist AAC is seeking Senior Security Analyst focusing on Vulnerability Management to join our security compliance team. In this role, you will work closely with the Information Systems Security Officer (ISSO) and play a critical part in safeguarding organization’s IT infrastructure. You will be part of a broader IT program that provides end-to-end support—including help desk, systems, network, incident response and security services—ensuring the availability, integrity, and confidentiality of mission-critical systems. Responsibilities Lead the agency’s vulnerability management lifecycle using Tenable.sc, Tenable.io, Nessus Manager, and Nessus scanners (on-prem and cloud). Analyze, prioritize, and track remediation of vulnerabilities in coordination with IT operations and system owners. Maintain scan schedules, asset groups, scan policies dashboards, and reports tailored to agency infrastructure and communicate risk posture and remediation progress to relevant infrastructure, application, and cloud teams to remediate vulnerabilities. Define the scanner and security center architecture, refine data flows and synchronizations, tune scanning configurations to minimize false positives and ensure the best coverage. Develop and maintain documentation for system setup, operation, vulnerability management processes, exceptions, and remediation tracking. Support implementation of security projects that require compliance with relevant government policies or standards. Act as SME for vulnerability management tools and processes. Ensure systems and practices comply with FISMA and FedRAMP related Security Assessment and Authorization (SA&A) and compliance for the organization’s IT programs. Assist in coordination, implementation, communication, and enforcement of the organization’s IT security policies. Support incident response. The position requires on-site presence 3 to 5 days per week. The on-site requirements are subject to change based on the needs and requirements of the organization. Required Experience Requirements: Requires bachelor’s degree in computer science, cyber security, engineering, or a related technical field. Additional experience and relevant certifications may be considered in leu of a degree. 5-7 years of progressive and related experience in IT security with at least 3 years in vulnerability management. Expert knowledge of IT security vulnerabilities and risk assessments with the ability to explain the risks associated with them to executives, program, and technology staff. Expert knowledge of Tenable.sc (on-prem) and Tenable.io (cloud). Strong knowledge of vulnerability management lifecycle, patch management, and risk scoring (e.g., CVSS2). Familiarity with cloud platforms (AWS and GCP) and hybrid environments. Understanding of Windows, Linux/Unix, and network devices security hardening. Ability to work with program staff, executives, security application vendors and technology staff to achieve IT security goals and objectives. Experience developing and maintaining Security Assessment and Authorization (SA&A) documentation for large IT systems for the Federal Government. Excellent working experience in applying FISMA, and FedRAMP processes and policies to information systems. Experience with Checkmarx and Checkmarx One (SaaS). Migration experience to Checkmarx One is desirable. Strong communication skills (both technical and non-technical) and ability to collaborate across IT, security, and business units. Ability to effectively communicate orally and in writing. Experience supporting a nationwide mid-to large Federal agency enterprise is a plus. CISSP certification required (ability to obtain within 6 months of start). Must obtain an agency public trust suitability determination prior to start date. Desired Qualifications Experience with scripting and automation (e.g., Python, PowerShell) to automate scanning tasks, reporting, and API integrations; administration and operation of security scanning and vulnerability management platforms such as Nessus. Deep expertise with SIEM platforms and integration of vulnerability data into enterprise monitoring. Understanding of the Secure Software Development Life Cycle. Master’s degree or additional security or cloud certifications (e.g., CISM). #J-18808-Ljbffr AAC

Apply
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Sr IT Security/Vulnerability Management Specialist in Bethesda, MD vacancy
  • Senior DoD Civil Engineer - Vulnerability & Security Expert
     ...Arlington, Virginia. The ideal candidate will be a Subject Matter Expert in Department of Defense infrastructure and will conduct vulnerability assessments on various infrastructure elements, including water and HVAC systems. Qualifications include a Bachelor's degree in... 
    Senior

    K2 Group, Inc.

    Arlington, VA
    2 days ago
  • Sr Security Analyst/Vulnerability Management Lead

    $70 - $80 per hour

     ...Description We are seeking a Senior Security Analyst / Vulnerability Management Lead to join our security compliance team. In this role, you will work...  ...play a critical part in safeguarding organization’s IT infrastructure. You will be part of a broader IT program... 
    Senior
    Contract work
    Temporary work
    Work experience placement
    3 days per week
    Bethesda, MD
    6 days ago
  • Cloud Security Vulnerability Management Program Specialist

    $100k - $141.3k

     ...opportunities to learn, grow, and make an impact. Join us! The Role We are seeking a skilled and motivated Cloud Security Vulnerability Management Program Specialist to support the Cloud Security Assurance (CSA) organization by ensuring enterprise cloud workloads are... 
    Suggested
    Work at office
    Shift work
    Day shift

    Koitecc Solutions

    Washington DC
    13 hours ago
  • Senior Vulnerability & Security Management Lead
    AAC is seeking a Senior IT Security/Vulnerability Management Specialist in Bethesda, Maryland. The role involves leading the vulnerability management lifecycle and ensuring IT security compliance. Responsibilities include analyzing risks and working closely with multiple... 
    Senior
    3 days per week

    AAC

    Bethesda, MD
    2 days ago
  • Sr. Cloud Security Specialist (AWS)
     ...Senior Cloud Security Specialist 100% ONSITE in Washington DC Per Federal...  ...DESCRIPTION: The IT Security Engineering team is...  ...related to Identity and Access Management (IAM), security engineering...  ...zero trust, DevSecOps and vulnerability management. Technical... 
    Senior
    Contract work
    Local area

    System One Holdings, LLC

    Washington DC
    1 day ago
  • Senior Vulnerability Analyst
     ...immediate need for an experienced Vulnerability Assessor for a new customer...  ...FISMA systems Perform security compliance and vulnerability...  ...scan policies and repositories Manage scan policies for multiple FISMA...  ..., and technical aspects of IT Security in a complex environment... 
    Senior
    Immediate start
    Night shift

    Leidos

    Bethesda, MD
    3 days ago
  • Cloud Security and Vulnerability Management Consultant

    $67.7k - $90.27k

     ...expansive fiber network and connected ecosystem. We enable secure, high-performance connectivity across cloud, edge, and AI workloads...  ...Security Advisory Services is hiring a Cloud Security & Vulnerability Management consultant to join a team that delivers customer-facing... 
    Temporary work
    Remote work

    Lumen Inc

    Washington DC
    13 hours ago
  • Senior Cyber Vulnerability Analyst (TS/SCI)
    A technology services provider is seeking a Senior Cyber Vulnerability Analyst in Falls Church, VA. The ideal candidate will have over 1...  ...vulnerability analysis, with a strong knowledge of the Risk Management Framework. Responsibilities include conducting thorough cyber... 
    Senior

    Koniag Government Services, LLC

    Falls Church, VA
    3 days ago
  • Senior Staff SWE, Vulnerability Mgmt (Hybrid)
    GEICO is seeking a Senior Staff Software Engineer in Bethesda, MD to lead cybersecurity initiatives focused on vulnerability management. The role requires a proven track record in full-stack development, DevSecOps, and architecture in high-performance systems. The ideal... 
    Senior

    GEICO

    Bethesda, MD
    3 days ago
  • Sr. Information Systems Security Specialist

    $80k - $130k

     ...Overview VTG is seeking a Sr. Information System Security Specialist to support the Navy located at the...  ...demonstrate a working knowledge of the Risk Management Framework (RMF) process and/or...  ...processes. Plan and coordinate the IT security program and policies... 
    Senior
    Contract work
    Work experience placement

    VTG

    Washington DC
    1 day ago
  • Security Engineer-Senior Vulnerability Mgmt

    $65 - $75 per hour

     ...individuals who support cybersecurity operational environment and Vulnerability Management related requirements/needs; Engage with Federal Leadership...  ...with endpoint vulnerability scanning; Work Cyber related security operations ITSM (ServiceNow) assigned tickets to completion... 
    Senior
    Full time

    Aditi Consulting

    Washington DC
    4 days ago
  • Personnel Security Specialist - SR
     ...advanced protection and secrecy solutions to secure and strengthen critical missions,...  ...activities. We are seeking a Personnel Security Specialist Sr. to join our team to help contribute to...  ...requirement found in JADE SOP Manage program quota roster Maintain tracking... 
    Senior

    System High Corp

    Arlington, VA
    2 days ago
  • Personnel Security Specialist Senior
     ...Personnel Security Specialist Senior SiloSmashers is seeking a Personnel...  ...defined system of record, management, workflow, or tracking...  ...discern potential security vulnerabilities and to identify viable investigative...  ...various Federal LE and IC IT systems for conducting... 
    Senior
    Contract work
    Work at office
    Local area

    Silo Smashers

    Washington DC
    3 days ago
  • Systems Security Specialist (Senior)
     ...APIs, and cloud environments to identify security vulnerabilities and exploit paths. Perform red team...  ..., including authentication, session management, input validation, and access control...  ...specialized technical, cybersecurity, IT, and financial advisory solutions to the... 
    Senior
    Flexible hours

    ExpediteInfoTech Inc

    Rockville, MD
    7 days ago
  • Insider Threat Information Systems Security - Senior Data Analyst
     ...Information Systems Security - Senior Data Analyst...  ...cybersecurity, and risk management, as well as expertise...  ..., data protection specialists, and incident response...  ...leader with various IT security duties in support...  ...emerging threats and vulnerabilities from insiders.... 
    Senior
    For contractors
    Work at office

    H4 Enterprises

    Arlington, VA
    27 days ago
  • Senior Cloud Security Officer — TS Clearance Expert
    Fusion Technology is seeking an Information Systems Security Officer (ISSO) in Washington, DC. The ideal candidate will have a Bachelor...  ...include implementing security practices, conducting vulnerability scans, and serving as a liaison for IS security. Fusion Technology... 
    Senior

    Fusion Technology

    Washington DC
    3 days ago
  • Personnel Security Specialist - SR
     ...advanced protection and secrecy solutions to secure and strengthen critical missions,...  ...activities. We are seeking a Personnel Security Specialist Sr. to join our team to help contribute to...  ...requirement found in JADE SOP Manage program quota roster Maintain tracking numbers... 
    Senior

    System High Corporation

    Arlington, VA
    4 days ago
  • Operations Security Advisor/Cybersecurity Incident Response Engineer, Sr

    $80.2k - $111.3k

     ...This role applies ITIL-aligned incident management principles to structure major incident handling...  ...governance, and influences broader security architecture and operations based on emerging...  ...~8+ years of progressive IT and cybersecurity experience with significant... 
    Senior
    Contract work
    Work experience placement
    Work at office

    ASM Research, An Accenture Federal Services Company

    Washington DC
    4 days ago
  • Senior SCCM & Security Engineer - Patch & RMF Expert
    The Downtown Boulder Partnership is seeking a Sr. SCCM Systems Security Engineer to join their team in Washington, D.C. This role involves managing server patches, emphasizing security posture during deployments, and ensuring compliance with FISMA and RMF standards. Strong... 
    Senior

    Downtown Boulder Partnership

    Washington DC
    1 day ago
  • Physical Security Specialist
     ...Job Title Physical Security Specialist Duties The NCSC/Security Directorate (SD) protects...  ...advance the U.S. Government's risk management environment to safeguard against...  ...identifying and preventing technical vulnerabilities, driving R&D of countermeasures to address... 
    For contractors
    Work at office
    Worldwide
    Overseas

    US Government Jobs - Other Agencies

    Bethesda, MD
    2 days ago
  • Physical Security Specialist
     ...proactive counterintelligence and security activities across the...  ...the U.S. Government's risk management environment to safeguard...  ...identifying and preventing technical vulnerabilities, driving R&D of...  .... The Physical Security Specialist will: Plan and manage the... 
    Permanent employment
    Full time
    Part time
    For contractors
    Work at office
    Worldwide
    Relocation
    Overseas
    Trial period

    Office of the Director of National Intelligence

    Bethesda, MD
    13 hours ago
  • Physical Security Specialist

    $88.4k - $154.7k

     ...is looking for a talented Physical Security Specialist (PhySS) to join our team! In this role...  ...with stakeholders to address security vulnerabilities and implement corrective actions....  ...Provide training on SCIF protocols and manage documentation for accreditation and compliance... 
    Local area
    Worldwide
    Flexible hours

    Parsons Company

    Bethesda, MD
    1 day ago
  • Cyber Security Incident and Event Management/Elastic Specialist
     ...SIEM/Elastic Specialist US CITIZEN ONLY. SECRET CLEARANCE REQUIRED...  .... MUST HAVE IT-II CERT (IE SECURITY+) Responsibilities: •...  ...teams Coordinating with IT or DevOps for containment and...  ...assistance with monitoring Vulnerability Management tools, such as ACAS and ePO... 

    Diligent Consulting

    Washington DC
    13 hours ago
  • Cyber Defense & Engineering - Cloud Security Senior Associate

    $77k - $202k

     ...advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard...  ...building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex... 
    Senior
    Full time
    H1b

    PwC

    Washington DC
    2 days ago
  • Senior Vulnerability Assessment Analyst

    $107.9k - $195.05k

    Leidos is looking for a Vulnerability Assessor (VAT Analyst) in Arlington, Virginia, focusing on enhancing cybersecurity capabilities for a new strategic task order. The role requires at least 8 years of cybersecurity experience or a master's degree with 4-6 years of experience... 
    Senior

    Leidos

    Arlington, VA
    1 day ago
  • NLM Security Specialist I - III

    $90k - $135k

     ...Description:\n\nSalary: $90,000 - $135,000 Security Specialist I III Lexical Intelligence...  ...security and compliance, vulnerability assessment and risk management, and cloud and application security...  ...within a team of multidisciplinary IT professionals including DevOps engineers... 
    Contract work
    For contractors
    Work at office

    Lexical Intelligence, LLC

    Bethesda, MD
    15 days ago
  • NLM Security Specialist

    $129.99k - $149.48k

     ...in cybersecurity controls, risk management, and compliance helps organizations securely deliver impactful services?...  ...seeking 2 highly skilled Security Specialists to support our client’s mission...  ...day‑to‑day security monitoring (vulnerability scanning, log review, and event... 
    Full time
    Work at office
    Remote work
    Flexible hours

    Ripple Effect

    Bethesda, MD
    27 days ago
  • Sr. Cloud Security Specialist (AWS)
     ...Senior Cloud Security Specialist 100% ONSITE in Washington DC Per Federal...  ...DESCRIPTION: The IT Security Engineering team is...  ...related to Identity and Access Management (IAM), security engineering...  ...zero trust, DevSecOps and vulnerability management. Technical... 
    Senior
    Contract work
    Local area

    System One

    Washington DC
    7 days ago
  • Remote Security Operations Analyst: Patch & Vulnerability
    Terrestris LLC is seeking an IT Security Operations Analyst to support the IT Technology Services contract. This role involves aligning...  ...processes with standards, collaborating with the Patch Management Team, and managing patch deployments. Candidates must have at... 
    Remote job
    Contract work

    Terrestris LLC

    Washington DC
    4 days ago
  • Principal Vulnerability Researcher - Hybrid - TS/SCI Arlington, VA
    About the Company Our client has deep expertise in Vulnerability Research, CNO Development, Reverse Engineering, and Penetration Testing. They support the defense and intelligence communities along with commercial clients. Founded by engineers, they have their own fixed... 
    Contract work

    Stanley Reid & Company

    Arlington, VA
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Sr IT Security/Vulnerability Management Specialist. Be the first to apply!

Related searches