BlueVoyant – Enterprise Vulnerability and Risk Analyst – Maryland

Job title: Enterprise Vulnerability and Risk Analyst Company: BlueVoyant Job description: Enterprise Vulnerability and Risk Analyst This position is Full-Time Remote if not located near the College Park, MD office. US Citizenship is required for this role based on the special contracts division requirement. BlueVoyant is looking for an intelligent, team oriented, and highly motivated Enterprise Vulnerability and Risk Analyst to join our qualified and talented Professional Services team. BlueVoyant takes a holistic approach to identifying and prioritizing the remediation and mitigating strategies to combat organizational risk. The value from this role is critical when it comes to defending our partners and clients from state-sponsored and criminal cyber actors, insider threats, and corrupt competitors world-wide. Key responsibilities: • Work with clients of various security postures and skill sets to deploy and maintain various information security related toolsets such as Tenable, Qualys, Nexpose, Nessus, and many more. • Be able to regularly communicate to clients the tactics, techniques, and procedures required to downward adjust organizational risk • Create and maintain action driven reports across several different applications. • Thoroughly detailed project management and tracking of client vulnerabilities. • Assist clients with analyzing and prioritizing vulnerability remediation. • Delivering Cloud, Local, Public, Agent, and Kubernetes scan types results. • Troubleshoot network connectivity issues to resolve scan performance and interference challenges. • Validate identified vulnerabilities. • Assist with offensive security related tasks. Position Requirements: • Thrives in a team environment remotely with drive and dedication. • Comprehensive knowledge of Qualys Enterprise and Tenable.io including deployment, configuration, troubleshooting and reporting. • Knowledge of vulnerability risks and impacts as well as the ability to assist client in vulnerability prioritization and remediation. • Keep current with latest security trends and news to continually improve vulnerability and threat analysis, including training on scanner specific modules and techniques. • Strong customer-service oriented, with excellent written and oral communication skills. • Willingness to self-teach/learn and contribute rapidly evolving operating environment. • Minimal 2-4 years of network vulnerability scanning with industry recognized tools (Qualys Enterprise, Tenable.io), network communication troubleshooting, managing vulnerability identification technologies, and/or cybersecurity related investigative experience. • Maintain proper documentation on workflows, processes, and project status. • Drafting client communication and reports to explain findings and recommendations. • Knowledge of various attack vectors and the overall attack surface. • Functional understanding of network addressing (IPv4 & IPv6) and network communications. • Degree Requirement: College degrees in the Computer Science or applicable hands-on job experience in Vulnerability Identification/Scanning or Offensive Security. Preferred Qualifications: • Scripting in Python, Bash, PowerShell is preferred. • In depth knowledge of Cloud vulnerability scanning including scanner deployment methods, practices and reporting. • Experience and proficiency in Cloud penetration testing. • Application of common Cyber Security concepts including Intrusion Detection Systems, Host Intrusion Prevention Systems, and Anti-Virus Solutions. • Understanding of the Windows/Mac/Linux File System structure, and ability to recover deleted files, search hidden files, and access registry keys. • Knowledge of Operational Security (OPSEC) principles for cyber operations with an emerging understanding of the relationships between the cyber domain disciplines. • Experience with network signature development with tools such as SNORT, NetFLOW, WireShark, tcpdump or related tools. • OSCP or other advanced ethical hacking/vulnerability scanning certifications About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability! Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies. Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America. All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Powered by JazzHR Expected salary: Location: Maryland Apply for the job now! Apply tot his job