Cyber Vulnerability Analyst

Washington, DC
Apr 05, 2021
Apr 09, 2021
Full Time
Job SummaryAmentum is seeking individuals who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who take time for the things that they have a passion to do on a daily basis. And we're looking for team members who are passionate about making a difference by working on mission critical efforts that we manage as a premier government contractor. Cyber Vulnerability Analyst will assess cyber vulnerabilities of critical mission systems, networks, architectures, infrastructures, and assets. Strong Cyber Vulnerability Analyst candidates will have the ability to complete the tasks below while supporting our customer on-site in Washington, DC. Duties:Performs business process engineering for remediation of vulnerability found during vulnerability assessments.Records vulnerabilities and documents requirements needed to resolve vulnerabilities.Develop a strong understanding of business, information technology and system processes.Examine internal cyber security controls, evaluate the design and operational effectiveness, determine exposure to risk and develop remediation strategies.Conduct integrated information technology audits, including but not limited to pre/post-implementation phases, privacy, data governance, and cyber security reviews using accepted audit and risk assessment frameworks adopted to our environment.Conduct efficient and effective vulnerability analysis procedures.Communicate complex technical issues in a simplified manner to relevant staff and management.Generate final report showing compliance with our cyber security controls.Assure that issues and associated root causes are understood, well defined and presented in understandable manner.Review, evaluate, and test information technology application controls.Provide recommendations and guidance on identified security and control risk.Contributes to drive efficiencies and enhancement opportunities to existing auditing processes and techniques, using data analytics, automation, and other process improvement techniques and ideas.Minimum RequirementsMust have a minimum of 5 years of related experience as performing vulnerability assessments and audit remediation, specializing in business process engineering OR 4 years of related experience AND a current CompTIA Sec+ certification.Must have experience assessing system and database vulnerabilitiesEffective oral and written communication skillsAbility to prepare written reports, documents, and presentationsMust be able to obtain and maintain government access. Must be a US citizen. Preferred Qualifications Former ISSOPrevious Independent Verification & Validation (IV) experience preferredPrevious Plan of Action and Milestones (POA) experience preferred