Lead Systems Security Analyst

Day-to-Day Responsibilities

• Reviews security policies, directives, and vulnerability information to determine plans for addressing them.
• Determines and/or works with others to determine technical solutions for remediating vulnerabilities within a large Enterprise.
• Leads team to patch and deploy remediations/patches.
• Tracks and reports on vulnerability remediation.
• Manages team efforts to address remediations in alignment with customer security policies and timelines.
• Utilizes the Qualys vulnerability scanning tool to review vulnerabilities in the environment and validate post-deployment vulnerability remediation.
• Assists technical teams with the identification of baselines, scanning compliance, and performing remediation steps to bring systems into compliance.
• Works with System ISSOs to develop POAMs, address audit findings, and provide other required information for security documentation and artifacts.
• Provides technical recommendations to the remediation plan for identified events.
• Ensures security tools are on all systems, including servers, laptops, and desktops, and works with systems administrators to install them if missing.

• High School with 10+ years of overall systems and/or network vulnerability remediation experience (or commensurate experience) Clearance Required: Active Secret with the ability to obtain and hold DEA suitability

• Experience in determining and/or working with others to determine technical solutions for remediating vulnerabilities within a large Enterprise

• 5+ years of leadership experience

• Strong systems and/or network administration experience

• Hands-on experience remediating vulnerabilities on systems and/or network infrastructure

• Strong customer-facing and stakeholder communication skills

Nice to Have

• Experience with Qualys
• Experience with ServiceNow ticketing