Summary

Allyon is an established IT and Healthcare Services firm and we love what we do! Our team strives for success and it makes our day when we are able help talented individuals find their career’s next move and our clients find qualified talent. If you are interested in joining the Allyon Team, please apply or submit your resume for review today!

Job Title

Vulnerability Management Team Member

Location

Linthicum Heights, MD

Duties & Responsibilities

• Provide technical support to the DoD Vulnerability Disclosure Program (VDP) for the Defense Cyber Crime Center (DC3).
• Directly support the mission to improve defense of the DoD Information Network (DoDIN), by receiving, validating, and disseminating cybersecurity vulnerabilities reported by private-sector researchers.
• Tracks and analyzes reported vulnerabilities and mitigation actions by systems owners to identify gaps in DoDIN defenses; areas requiring increased attention, and areas for improvement.
• Performs technical validation and initial severity assessment of externally-reported web security vulnerabilities
• Possesses and applies a comprehensive knowledge across key tasks and high impact assignments.
• Plans and leads major technology assignments.
• Evaluates performance results and recommends major changes affecting short-term project growth and success.
• Functions as a technical expert across multiple project assignments.
• May supervise others.

Position Requirements

• Expert technical understanding of software and web application security and common vulnerabilities (CWE, CVE)
• Demonstrated technical ability to validate web vulnerabilities on live DoD web properties using manual techniques, resourceful problem-solving, and common tools
• Demonstrated ability to recognize, interpret, and communicate in information assurance vulnerability management (IAVM), Risk Management Framework (RMF), and security technical implementation guides (STIGs)
• Demonstrated knowledge of various software testing methodologies, test case creation and the
  reporting process
• Knowledge of current DoD cyber security challenges and threats
• Knowledge of common web application architecture and programming techniques, including common languages (e.g., JavaScript, PHP, SQL)
• Familiar with Layer 2/3 network and security appliance capabilities; familiar with TCP/IP protocol stack
• Strong verbal and written communication skills; ability to provide expert review of accurate and timely technical reports for release to external customers
• Flexibility to adapt to dynamic work environment to meet organizational requirements
• Ability to use sound judgement when conducting live testing to avoid or minimize impact to production services and data
• Superior organizational skills to analyze, develop, and deliver detailed reports to meet short suspense windows
• Aware of industry trends; IoT, ICS/SCADA, containerization technologies, Dev-Sec-Ops

Education/Security Clearance/Certifications:

• Secret
• Certifications (any): CEH, GCIH, Security+, CCNA Cyber Ops, GWAPT, GPEN, OSCP, OSWE
• 18-22 years of professional experience without a degree; or 10-14 years of professional experience with a Bachelors degree from an accredited college in a related discipline, or equivalent experience/combined education; or 8-12 years of professional experience with a related Masters degree; or 4 years of professional experience required with a related PhD or JD

What we Offer

Competitive pay and benefits

401k eligibility after 6 months of employment

How to Apply

Please submit your resume below for this opportunity and to view other positions available, visit our career’s page at http://jobs.crelate.com/portal/allstafftechnicalsolutions

Allyon is an equal employment opportunities (EEO) employer and terms of employment are without regard to race, color, religion, sex, national origin, age, disability or genetics. Allyon complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment.