Senior Vulnerability Assessment Analyst

Req ID: 318791

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Senior Vulnerability Assessment Analyst to join our team in Merrifield, Virginia (US-VA), United States (US).

Overview:

All of the duties listed support one or more of the following cybersecurity related functions; information security, SPAA, incident response, cyber security, insider threat, computer forensics, vulnerability assessment and management, network data capture, intrusion detection, log management, auditing, security incident and event management (SIEM), and penetration testing.

Personnel assigned to this role will serve primarily on the Operations & Response (O&R) Team; however, this role may also support the Vulnerability Assessment and Penetration Test (VAPT) and Engineering teams. This role is also responsible for coordinating with both the Cybersecurity Services Section and other sections or divisions within the organization.

Job Duties:

• Coordinates with other government agencies to record and report vulnerability, risk, and penetration test assessments and results.
• Maintains records of vulnerability assessment and penetration testing activities.
• Monitors Security Information and Event Management (SIEM) to identify security issues for remediation.
• Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information in order to support penetration testing activities.
• Provide recommendations to improve the overall security posture of the DEA’s infrastructure based on vulnerability analysis, penetration testing results, industry. reports, and incident activities.
• Communicates alerts to agencies activities to their network infrastructure, applications and operating systems.
• Assists with implementation of countermeasures or mitigating controls.
• Supports efforts to consolidate and conduct comprehensive analysis of threat data obtained from classified, proprietary, and open-source resources to provide indication and warnings of impending attacks against unclassified and classified networks.
• Supports Team Lead on developing recommendations for changes to Standard Operating Procedures and other similar documentation.
• Monitors and reviews logs from existing security tools and creates new security tool signatures to ensure maximum performance and availability.
• Performs all aspects of intrusion detection, log and audit management, network and database vulnerability assessment and compliance management, and security configuration.
• Installs, configures, troubleshoots, and maintains server configurations (hardware and software) to ensure their confidentiality, integrity, and availability. Also manages accounts, security devices, and patches, responsible for access control/passwords/account creation and administration.
• Analyze collected information to identify vulnerabilities and potential for exploitation.
• Provides support in the identification, documentation, and development of computer and network security countermeasures.
• Performs penetration testing on enterprise network, systems, or applications.
• Identifies network and operating systems vulnerabilities and recommends countermeasures.
• Supports the deployment and integration of security tools as needed.
• Prepares written reports and provides verbal information security briefings.
• Investigates, monitors, analyzes, and reports on information security incidents.
• Responds to crisis or urgent situations within the pertinent domain to mitigate immediate and potential threats.
• Use mitigation, preparedness, and response and recovery approaches, as needed to maximize information security.
• Tests, implements, deploys, maintains, and administers information system security infrastructure.
• Reviews intrusion detection sensors and log collection hardware and software to ensure systems are collecting relevant data to support penetration testing activities.
• Monitors all security systems to ensure maximum performance and availability.
• Analyze computer security threat information from multiple sources, disciplines and agencies across.
• Performs on-demand vulnerability scanning, compliance monitoring, network mapping, assets discovery, and evaluations on web applications, databases, systems, networks, and applications.
• Performs day-to-day configuration and operation of production and test networks.
  
  

Basic Qualifications:

• Minimum 10 years of documented work experience performing any combination of or more years of experience in blue or red team, vulnerability analysis and risk management, information system security, computer forensics, or insider threat.
• To include: Work experience and knowledge in; vulnerability assessment, analysis, and mitigation; analyzing security system logs, security tools, and data; network monitoring, and intrusion detection using host based and network-based intrusion detection systems (IDS) and log management applications; testing, installing, patching, and upgrading computer hardware and operating systems (Windows, and UNIX) in an enterprise environment; identifying, collecting, processing, documenting, reporting, cyber security/incident response events; architecting, engineering, developing and implementing cyber security/incident response policies and procedures; engineering, testing, installing, patching, and upgrading various information security hardware and software applications. Examples of tools include SourceFire, Arcsight, Splunk, NetWitness, Guidance Software, Digital Guardian, SureView, Intelliview, Nessus, and Foundstone. Penetration testing experience for networks, web applications, and enterprise systems. Experience with Federal cybersecurity standards, industry best practices and guidelines, policies and procedures; engineering, testing, installing, patching, and upgrading various information security hardware and software applications.
• Experience performing requirements analysis, program development activities, architecting, engineering, integrating, developing, and/or deploying information technology products (hardware and software) in an enterprise environment.
• Experience using one or more of the following security tools: SourceFire, Arcsight, Splunk, NetWitness, Guidance Software, Digital Guardian, SureView, Intelliview, Nessus, and Foundstone.
• Penetration testing experience for networks, web applications, and enterprise systems. Experience with Federal cybersecurity standards, industry best practices and guidelines.
• Master’s degree in computer science, information systems analysis, science/technology, information management, computer engineering, or electrical/electronic engineering.
• Education Equivalency: H.S. Diploma 4 years additional experience Equals Associate’s Degree; Associate’s Degree 4 years additional experience Equals Bachelor’s Degree; Bachelor’s Degree 4 years additional experience Equals Master’s Degree.
• Must be a US citizen who holds a current Secret Clearance.
• Must live a commutable distance from the client site in Merrifield, VA.
  
  

#FedSec

About NTT DATA

NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us . This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here . If you'd like more information on your EEO rights under the law, please click here . For Pay Transparency information, please click here .