[Remote] Vulnerability Assessment Analyst

Note: The job is a remote job and is open to candidates in USA. Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. They are seeking a Vulnerability Assessment Analyst to support the Multi-Domain Solutions Division in analyzing security tools, integrating security solutions, and ensuring compliance with standards. The role involves collaboration with team members and contributing to security monitoring and incident response.


Responsibilities

  • Assist in the analysis of new security tools and technologies and their impact on existing systems and workflows
  • Support the integration of security solutions by helping to document and implement configuration settings and requirements
  • Contribute to ensuring security changes are technically sound and comply with RMF, DoD, and NIST standards
  • Help identify and address gaps in cyber tools and processes and assist with the implementation of new solutions
  • Learn and apply DISA STIGs by assisting with their implementation and verification on various systems
  • Contribute to security monitoring and incident response using SIEM technologies
  • Collaborate with team members to communicate and document security configurations and requirements
  • Maintain familiarity with software development product lines

Skills

  • Required DoD 8140 IAT Level II compliant certification such as CompTIA Security+
  • Must have an active and current Secret Clearance
  • Bachelors degree with 4-8 years of relevant experience. Additional years of experience may be considered in lieu of degree
  • Over two years of experience in systems, OS security or network security
  • Proficient in Tenable Nessus, Nessus Manager, and Tenable.sc, or other vulnerability scanning and management
  • Basic hands-on experience with command-line interfaces on various operating systems, including Linux and Windows
  • Understands basic command in using Bash and PowerShell for scripting and automation
  • Basic working knowledge of DISA STIGs, including the ability to apply, verify, and document compliance
  • Understands the basics of Risk Management Framework (RMF) process, including the creation of technical artifacts
  • Demonstrated analytical skills for troubleshooting security and connectivity issues
  • A proven collaborator with excellent communication skills, able to work effectively with cross-functional teams
  • Familiarity with other vulnerability scanning or security tools (e.g., Anchore, OpenSCAP, Syft, Grype, PowerSTIG, Evaluate-STIG, STIGviewer)
  • Experience with scripting or automation to enhance scanning and reporting processes
  • Experience with Windows and Linux operating systems and network device configurations and navigating and interacting via command line
  • Knowledge of containerization platforms like Docker and container orchestration tools such as Kubernetes, OpenShift, or similar
  • Other relevant cybersecurity certifications like SSCP, CCSP, CEH, PenTest+, Cloud+, GIAC, GCED, GCIH or CySA+ are a plus

Benefits

  • Health and Wellness programs
  • Income Protection
  • Paid Leave
  • Retirement

Company Overview

  • Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health. It was founded in 1969, and is headquartered in Reston, Virginia, USA, with a workforce of 10001+ employees. Its website is https://www.leidos.com/.

    • Back to blog