Cyber Vulnerability Assessment Analyst (SME)

ANALYGENCE is seeking an experienced Cyber Vulnerability Assessment Analyst (SME)to support our federal customer who plays a key role in enhancing the security, resiliency, and reliability of the nation's cyber and communications infrastructure. This role directly supports the customer Mission Engineering (ME) Information Security Branch (ISB) responsible for providing Cybersecurity and Information Assurance support. Services include providing programmatic, technical, engineering, and integration support for the continued design, development, enhancement, integration, deployment, operations, and sustainment of security supported initiatives.

The Cyber Vulnerability Assessment Analyst (SME) is responsible for leading penetration testing, developing advanced security scenarios and testing systems against those scenarios, developing advanced security architectures for the implementation of custom countermeasures, provides security considerations to advise system engineering teams with the objective to reduce errors, flaws, and weaknesses that may constitute security vulnerability, performing advanced code analysis, and performing advanced protocol analysis for nation-state and state-sponsored cyber threat actor capabilities. The current team member work arrangement for this position is hybrid and requires your on-site presence on a reoccurring basis as determined by the customer.

• Must have an active TS/SCI security clearance.
• 10+ years of proven experience as a Security Engineer.
• Requires supervisory/leadership abilities to oversee large teams responsible for planning, analyzing, implementing, and maintaining many different projects.
• Must have experience assessing security implementation of cloud and hybrid environments to include pipelines, applications and services; also ensuring an industry best practice implementation utilizing agile practices for scanning and end to end vulnerability remediation as well as assist in all information security planning, compliance and risk management, manage teams, ensure they have appropriate skill sets, and tie the teams and results together.
• Must be able to identify vulnerabilities and understand and recommend countermeasures; analyze the network to determine if appropriate security is applied; possess and apply knowledge NIST RMF; develop and implement test plans and ensure execution; and evaluate the costs and benefits of security functions and considerations from analysis of alternatives, engineering trade-offs and risk treatment decisions.