Urgent Hiring: Systems Security Analyst IV // Reston Town Center, VA

Job Title: Systems Security Analyst IV

Location: Reston Town Center, VA (Hybrid)

Duration: 6-month contract to start with

Rate: $45/hr. on W2

Job Description

• Contribute to the team responsible for conducting full governance lifecycle analysis for Vulnerability Management processes, including monitoring, assessment, and oversight.
• Contribute to the team responsible for determining business areas that pose potential threats to the enterprise.
• Manage information monitoring and processes to reduce risk using rigorous analysis.
• Oversee the effective and efficient remediation efforts of vulnerabilities.

Qualifications

• Experienced in analyzing data to assess and identify potential security weaknesses in systems, networks, and applications.
• Experienced in evaluating the risk of vulnerabilities, prioritizing remediation efforts, and working with teams to implement fixes and mitigations.
• Experienced in researching vulnerabilities, emerging threats, and best practices in vulnerability management.
• Experienced in providing reports and analysis to management and other stakeholders, communicating findings and recommended actions.
• Assist in coordinating and resolving security incidents related to identified vulnerabilities.

Skills

• Proven 5+ years of work experience with vulnerability management, including vulnerability assessment.
• 5+ years of work experience with system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] injections, race conditions, covert channels, replay, return-oriented attacks, malicious code).
• Knowledge of what constitutes a network attack and its relationship to both threats and vulnerabilities.
• Work experience with vulnerability scanners such as Wiz, Tenable, NexusIQ, etc.
• Strong understanding of emerging threat intelligence (CISA, Kenna, etc.).
• Knowledge of network security architecture concepts including topology, protocols, components, and principles.
• Knowledge of how traffic flows across the network.
• Knowledge of application vulnerabilities.
• Familiarity with NIST Cybersecurity Framework (CSF) and NIST Risk Management Framework (RMF) is a plus.
• Certifications: CISA, CRISC, CIA, CISM, and/or CISSP are a plus.