Nessus Security Tool Engineer

Nessus Security Tool Engineer Location: Chantilly, VA
Work Type: Onsite
Remote Work: NO
Job Description
Gridiron IT is looking for a Security Tool Engineer to support our DoD customer to implement an enterprise IT service delivery model that provides consistent, secure, high-quality, and cost-effective services to enable mission success and improve end user experience across the customer environment. On this program, Gridiron IT will deliver enhanced capabilities and services to implement and operate an enterprise ITSM solution, enterprise service desk, endpoint management and security solution, as well as CONOCONUS field support and life cycle support for end user devices to enable the DoD customer to transition focus from IT operations to mission operations.

As a Security Tool Engineer, you will be responsible for designing, implementing, and maintaining security tools and technologies to enhance the organization's cybersecurity posture. Your primary focus will be on evaluating, deploying, configuring, and optimizing various security solutions to protect critical systems and data from cyber threats. You will work closely with the cybersecurity team, IT staff, and other stakeholders to ensure the effective operation of security tools and their integration into the organization's infrastructure.

Responsibilities

You will be a Tenable-Nessus Security Engineer for the Deployment team as well as providing selective O&M services to Phase 1 tools for an EITaaS Enterprise solution based on Tenable-Nessus. Duties include:

• Installing and Configuring Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center on both Linux/Unix and Windows based environments
• Responsible for installing and configuring Nessus Agents
• Secure Tenable server an Enable TLS
• Integrating Tenable products with LDAP, Active Directory, and CyberArk.
• Responsible for the creation of tenable Organizations, Repositories, and Scan Zones.
• Responsible for local and LDAP based user management.
• Responsible for configuring tenable plugins/feeds and adding audit files.
• Responsible for licensing the product both online and offline.
• Responsible for adding scan policies, audit policies, and credentials to Security Center, and Nessus Manager.
• Responsible for configuring Nessus Manager scan pulls to Security Center
• Tenable-Nessus Security Analyst
• Responsible for defining scan policies and audit policies
• Responsible for adding scan credentials
• Responsible for Scheduling scans
• Responsible for Generating Scan Reports
• Responsible for importing/uploading scan reports for Vulnerability
• Responsible for the Analysis and validation of the scan results

Required Qualifications

Required:

• Bachelor s Degree in relevant field and 7 years of relevant experience.
• Active Secret Clearance.
• Proven experience as a Nessus-Tenable Security Tool Engineer or in a similar role, with hands-on experience in deploying and managing security tools.
• In-depth knowledge of the following security technologies: Nessus Tenable (ACAS), Microsoft Defender for Endpoint, and STIG Management.
• Familiarity with network and system security principles, protocols, and configurations.
• Strong analytical and problem-solving skills to troubleshoot and resolve complex security tool issues.
• Excellent communication and collaboration skills to work effectively with cross-functional teams.
• Understanding of industry compliance standards (e.g., NIST) and relevant regulations (e.g., GDPR, HIPAA) is advantageous.
• Willingness to stay updated with the latest cybersecurity trends and emerging security tools.

Desired:

• Required DoD 8140 compliant certification such as CompTIA Security .
• Other relevant cybersecurity certifications like Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM), are a plus.

Clearance
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Requires Secret Clearance.
Compensation and Benefits
Salary Range: $100,000 - $135,000/yr (Compensation is determined by various factors, including but not limited to location, work experience, skills, education, certifications, seniority, and business needs. This range may be modified in the future.)

Benefits: Gridiron offers a comprehensive benefits package including medical, dental, vision insurance, HSA, FSA, 401(k), disability & ADD insurance, life and pet insurance to eligible employees. Full-time and part-time employees working at least 30 hours per week on a regular basis are eligible to participate in Gridiron s benefits programs.

Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status.

Gridiron IT is a Women Owned Small Business (WOSB) headquartered in the Washington, D.C. area that supports our clients' missions throughout the United States. Gridiron IT specializes in providing comprehensive IT services tailored to meet the needs of federal agencies. Our capabilities include IT Infrastructure & Cloud Services, Cyber Security, Software Integration & Development, Data Solution & AI, and Enterprise Applications. These capabilities are backed by Gridiron IT's experienced workforce and our commitment to ensuring we meet and exceed our clients' expectations.