Senior Tenable Analyst

Edgewater Federal Solutions is currently seeking multiple Sr. Tenable Analyst/SME to provide support to an Edgewater Federal government contract.

Members of this team are highly motivated, self-driven, and are given great latitude to operate. Qualified candidates must have great initiative, a positive and healthy questioning attitude, and a drive to continuously help mature the vulnerability management program. This role affords the opportunity to work with a great team while serving a fulfilling mission.

Responsibilities

Serve as a technical security analyst in a dynamic client environment.
• Operate in a fast-paced environment using leadership skills and providing thoughtful ideas of process improvements and enhancements.
• Conduct compliance and vulnerability assessments on a broad range of systems, including mainframe, UNIX, Windows, networking, databases, virtual environments, applications, and web servers.
• Utilize both manual and automated methodologies to identify, assess, and report security risks.
• Prioritize findings based on risk and document detailed corrective and remediation plans/actions.
• Clearly communicate threat, vulnerabilities, and risk information to stakeholders in executive management positions as well as fellow technical staff and provide recommend solutions for client technical and security challenges.
• Develop, enhance, and implement risk management strategies to support cybersecurity programs and engage with stakeholder partners to design and implement a holistic risk management strategy.
• Facilitating communication between the Information Security Program, client Information System Security Officers (ISSOs), and system owners to address security issues and resolve vulnerabilities in a timely manner
• Experience in a rapid paced, time sensitive, high-quality environment.
• Strong problem-solving capabilities and the ability to effectively communicate solutions.
• Ability to take direction and achieve quality results, independently strive for personal excellence when completing tasks.
• Strong customer service focus to meet the needs of internal and external customers.
• Professional, pleasant, and polished demeanor.
• Ability to work collaboratively with others.
• Strong eye for small details that make a difference.

Qualifications

• Bachelor's Degree and a minimum 8 years of experience, 5 in an Information Security environment.
• Industry recognized Information Security Certifications (CISSP, Security+, CEH)
• General knowledge of IT environments, information security, privacy, and threat and vulnerability management.
• Knowledge of NIST SP 800 series and testing NIST 800-53 security controls
• Ability to effectively present IT security risk to executive management, business and technical
• Ability to work independently and as part of a multi-disciplined and dynamic team
• Understanding of latest information security vulnerabilities
• Excellent self-directing skills - ability to initiate, coordinate and prioritize responsibilities and follow through on tasks and projects
• Excellent organizational, analytical, and problem-solving abilities.
• Proficient in MS Office (Word, PowerPoint, Excel) and MS Project
• Excellent command of English language in speaking and writing
• Experience in a rapid paced, time sensitive, high-quality environment.
• History of ethical performance.
• Exhibit considerable client delivery, business development, and proposal development experience.
• Strong management, teamwork, and interpersonal skills against difficult due dates and timelines.
• Strong written and verbal skills to effectively communicate at all levels in government and industry.

Desired Elements

• Experience with Tenable's product suite, specifically SecurityCenter, Nessus, Nessus Agents, and Nessus Network Monitor
• Experience with Vulnerability Management and Continuous Monitoring and Diagnostic operations.
• Implement new technologies and infrastructure for enhanced database risk assessment capabilities
• Coordinate and perform database assessments, analyze scan data, and prepare vulnerability reports for information systems
• Experience implementing and maintaining database Configuration Management standards and baselines
• Experience testing web applications using automated and manual testing methods.
• Vulnerability Scanning: Tenable Nessus, Qualys, or Rapid7
• Database Scanning: DbProtect or AppDetective
• Application Scanning: Appscan, Netsparker or Burp
• Proficient in MS Office (Word, PowerPoint, Excel) and MS Project
• Proposal development experience
• Knowledge of Federal contract vehicles
• Presentation skills

About Us:

Edgewater Federal Solutions is a privately held government contracting firm located near Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services, and timely delivery. Edgewater is ISO 9001, 20000-1, 27001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2024.

It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other status protected by applicable law.