Job Description:
• Supporting and enhancing the vulnerability management lifecycle for non-production systems aligned with FedRAMP IL5 compliance requirements
• Conducting vulnerability scans, analysis, and reporting activities in test and staging environments
• Providing detailed assessments and recommendations to internal teams for remediation activities
• Maintaining knowledge of vulnerabilities, exploits, and mitigation strategies relevant to Defense and Federal compliance frameworks
• Evaluating potential impacts of identified vulnerabilities and document appropriate compensating controls or mitigations
• Triaging scan results to identify true positives, reduce false positives, and support compliance validation processes
• Developing metrics and reports supporting internal security visibility and compliance documentation
Requirements:
• Bachelor's degree in Information Security or related field
• Experience with incident response/threat detection
• Understanding of common vulnerability management standards and frameworks (CVE, CVSS)
• Technical knowledge of various systems, VMs, cloud infrastructure, networking, and secure configurations relevant to government-grade systems
• Demonstrated accountability, analytical skill, and a collaborative approach within high-compliance and security-conscious environments
• Active Secret Security Clearance
Benefits:
• Health insurance
• 401K savings plan
• Company holidays
• Vacation (in the form of PTO)
• Sick time
• Family friendly benefits including parental leave
• Employee assistance program including a focus on mental and financial wellness