Job Title: Security Engineer - Vulnerability Management
Location: Washington, DC 20590 (onsite)
Type: Contract
Compensation: $57.10/HR on W2
Security Clearance: Ability to obtain and maintain a Public Trust clearance
Responsibilities
- Support the Department of Transportation’s Cybersecurity mission by joining a dedicated team of cybersecurity professionals that collaborate, cooperate, and facilitate maintaining and enhancing the security posture of DOT information systems and infrastructure.
- Manage and improve vulnerability identification and remediation efforts aligned with federal cybersecurity standards.
- Engage with Federal Leadership and counterparts to identify endpoint vulnerabilities and provide feedback / guidance on remediation actions.
- Coordinate remediation efforts with system and application administrators to meet required timelines.
- Develop and enhance vulnerability tracking, reporting, and risk assessment processes to present cyber-related risks effectively.
- Troubleshoot issues associated with endpoint vulnerability scanning in collaboration with relevant teams.
- Handle cybersecurity tickets within ITSM (ServiceNow) to ensure timely completion.
- Participate in cybersecurity and SecOps meetings to stay aligned with organizational security strategies.
- Provide feedback and collaborate on cybersecurity solutions to enhance DOT security posture.
Requirements- Six (6) years in Cybersecurity or related Information Technology fields, with a Bachelor''s degree and three (3) or more years of experience; or a Master''s degree and one (1) or more years of experience.
- Experience working with Endpoint Vulnerability Scanning solutions, specifically Tenable Nessus.
- Security+, CISSP, CISM, CISA, GCIH, OSCP, CEH, or similar certification.
- Understanding of Federal Cybersecurity requirements (FISMA, NIST 800 series, etc.).
- Solid experience in vulnerability management, risk assessment, mitigation, and remediation actions.
- Strong communication skills to explain vulnerability management concepts to various audiences.
- Ability to coordinate across teams and with federal counterparts effectively.
- Familiarity with vulnerability management lifecycle, cloud systems, operating systems, networks, and security best practices, including NIST frameworks.
System One, and its subsidiaries including Joulé and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
#M-M2
#LI-RF1
Ref: #851-Rockville-S1