Senior Vulnerability Assessment Analyst

“It's incredible to be part of a company where we value the mission and where I feel valued as more than just an engineer. The scope of my job makes every day a dynamic blend of technical innovation and strategic decision-making with a team that aims to deliver nothing less than excellence. We're building more than software. We're building solutions that make a difference for the end-users we serve. It's both challenging and deeply rewarding.”

-- Mitchell, Senior Systems Engineer, Annapolis Junction MD

 

Being on the BlueHalo team means working alongside the brightest minds in technology on the toughest challenges facing our nation – not just every once in a while, but every single day. Together, we are transforming the future of global defense and each BlueHalo employee plays a key role. That’s why our investment in you goes beyond a rewarding salary and benefits package. We’re committed to providing our people with the best opportunities to develop their skills, share their knowledge, and push their innovative ideas to the cutting-edge. Having fun doing it with a team that feels like family all across BlueHalo Nation is the ultimate perk. From Space and Directed Energy to Cyber and Intelligence to C4ISR and Air & Missile Defense, there is no limit to where you can take your career with us. Are you ready to launch a career at BlueHalo?

 

As a Senior Vulnerability Assessment Analyst with our Intel Division, you will perform assessments of systems and networks to determine the effectiveness of defense-in-depth architecture against known vulnerabilities based on DoD and IC policies, and industry best practices. Review and evaluate vulnerability scans, reports, or other IT/IS artifacts to identify systemic security issues and areas of weakness within a given DoD enclave, system, or enterprise. Work with stakeholders and system security engineers to effectively communicate the risks of identified vulnerabilities. Assist with remediation solutions of identified security vulnerabilities based on DoD, IC, and Federal policies, standards, and industry best practices.

 

If that sounds like you and you’re ready to make an impact now, not later, read on for the details and apply to make the most of your career.

 

• Analyze organization's cyber defense policies and configurations and evaluate compliance with DoD regulations and organizational directives
• Perform information system security vulnerability scanning to discover and analyze vulnerabilities to support the characterization of risks to networks, operating systems, applications, databases, and other information system components
• Evaluate compliance scans and reports to analyze configurations
• Facilitate audit reviews of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components
• Perform technical (evaluation of technology) and non-technical (evaluation of people and operations) vulnerability assessments of relevant technology focus areas (e.g. local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications)
• Share meaningful insight about the context of an organization's threat environment that improve its risk management posture
• Engage with stakeholders, to include IT professionals, management, and auditors, to facilitate vulnerability discovery and remediation
• Communicate, both verbally and written, security and compliance issues in an effective and appropriate manner
• Recommend appropriate remedial actions to mitigate risks and ensure information systems employ the appropriate level of information security controls
• Validate remedial actions and ensure compliance with information security policy and regulatory requirements
• Maintain proficiency in threat and vulnerability management best practices
• Prepare reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions

• Bachelor's degree in Computer Science or related discipline from an accredited college or university
• Ten (10) years’ experience as a Vulnerability Assessment Analyst 
• Active TS/SCI with a Polygraph

Certifications (at least one required):

• CASP+CE
• CISSP
• CSSLP

About BlueHalo Intelligence Systems

BlueHalo's Intel division provides specialized operational support, services and technology to plan, design, develop and execute critical missions in the national security community. BlueHalo generates actionable insights from analytics through a suite of operationalized AI/ML tools for data collection/ingestion and subsequent text, geospatial, time series and image/video analytics to support open-source intelligence. BlueHalo is a national source for classified Cyber/SIGINT missions and a leading provider of blockchain/crypto analytics and platform cyber resiliency, specializing in offensive and defensive cyber and SIGINT warfare technologies.

The BlueHalo Effect
 
It speaks to who we are as a company, a global protective ring that shields everything we most want to safeguard, an unbroken line that ensures our customers retain the advantage in any battlespace, from high above the Earth to deep in cyberspace. It’s who we are, a halo, a protector, the light of inspired engineering keeping our Nation safe.
 
Our vision is a world where national security is certain because technical superiority is assured.
 
Join us and become a vital element of The BlueHalo Effect!
 
EEO Statement 
 
BlueHalo is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. U.S. Citizenship is required for most positions.
 
If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of the employment process, please send an email to Recruiting@bluehalo.com. Please indicate the specifics of the assistance needed. This option is reserved only for individuals who are requesting a reasonable workplace accommodation. It is not intended for other purposes or inquiries.