View Our Website View All Jobs

Information Systems Security Analyst (ISSA) / Vulnerability Analyst

Thank you for your interest in joining the Centauri team. Our company has always represented both performance and innovation. We have combined the forces of three of the most advanced organizations in the national security sector – Integrity Applications Incorporated, Xebec, and DGS.  Together, we can leverage the next generation of advanced technologies to deliver industry-leading capabilities across space, cyber, defense and intelligence.   Our goal is to deliver solutions to address the most difficult technical challenges facing our customers. Of course, the only way that we can tackle those challenges is by recruiting the brightest minds in the industry to join our incredible team.

Are you looking for an exciting opportunity? It’s time to consider DGS! Join an organization that is distinguished by excellence. We offer a challenging and rewarding environment with talented professionals, great benefits, work-life balance integration, and a commitment to helping you grow and learn as well as opportunities.

Job Summary

Serves as an Information Systems Security Analyst/ Vulnerability Analyst on the Client’s Risk Management Framework (RMF) Team. Conducts security event monitoring, advanced analytics and response activities in support of the RMF team mission. Conducts enterprise-level vulnerability scans to include Amazon Web Services (AWS) cloud security. Performs vulnerability assessment, risk assessments, independent certification testing, security test and evaluation, penetration testing and verifies the accuracy and completeness of reports associated with each of those activities. Uses best of breed tools to assess the full scope of the vulnerability and compliance status of all classified IT systems.

An ideal candidate will have hands-on experience in vulnerability detection and assessment, penetration testing, cloud services such as Amazon Web Services (AWS), Web Application, Vulnerability, and Compliance assessments. Dev Ops experience is a plus.

Responsibilities and Duties:

  • Conduct vulnerability assessments, conduct troubleshooting of failed scans, and analyze vulnerability reports from enterprise assessment tools such as Nessus and NexPose.
  • Interface with Security Control Assessors (SCA), System Owners and System Administrators in order to coordinate and perform complex security test data analysis, and vulnerability and compliance testing on a wide range of classified IT systems.
  • Assess large-scale reporting, analyze trends, and provide contextual reporting to senior management.
  • Review and analyze security tool output and vulnerability data to identify relevant vulnerabilities; monitor external threat intelligence feeds for internal relevance.
  • Work with System Owners and technical teams to prioritize and remediate identified threats and vulnerabilities.
  • Support compliance and risk management activities, recommend security controls and corrective actions to mitigate vulnerability risks.
  • Coordinate with the Program Manager to ensure vulnerability scans adhere to approved timelines in support of the Assessment and Authorization (A&A) process.

Clearance Required

Active TS/SCI (DHS suitability preferred)

Required Skills and Education:

  • Required: One or more certifications - Security+, CISSP, CEH, GPEN Certification 
  • Desired: Bachelor Degree in Information Technology, Cyber Security, or Computer Science

Experience:

  • 4 years of experience in vulnerability assessment and penetration testing.
  • Experience using vulnerability scanning tools (Nessus, Nexprose, Burp Suite) and vulnerability management platforms.
  • Experience using common security testing and analysis tools (Metasploit, Kali Linux).
  • Experience with AWS cloud.
  • Understanding of cloud computing and security issues related to cloud environments.
  • Understanding of vulnerability management and security testing practices and methodologies.
  • Excellent organizational and attention to detail in tracking and reporting compliance activity and trend analysis of enterprise vulnerabilities.
  • Ability to develop follow-up action plans to resolve reportable issues and communicate with the other technologists to address security threats and vulnerabilities.
  • A working knowledge of the various operating systems (e.g. Windows, OS X, Linux, etc.) commonly deployed in enterprise networks, a conceptual understanding of Windows Active Directory is also required, and a working knowledge of network communications and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g. SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.).
  • Familiarity with ICD 503, 4300A/B/C, NIST 800-53 Rev3/Rev4, Risk Management Framework (RMF), Security Technical Implementation Guides (STIG’s), and other compliance guidelines.
  • Attention to Detail - Is thorough when performing work.
  • Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
  • Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

Travel:

Requires up to 10 percent travel

Special Requirements/Certifications:

Must be able to pass a government background investigation

DGS Benefits

At DGS, we understand that our employees are our most valuable resource. That’s why we offer competitive compensation packages and a supportive environment with good work-life balance. In addition, we provide opportunities for growth and development so that our employees can continually develop their competencies, skills, and talents, and pursue advancement opportunities.

When you join the DGS Team you receive - Medical Insurance, Dental Insurance, Vision Insurance, Life Insurance, Short Term & Long-Term Disability, Flexible Spending Account, 401k Retirement Savings Plan with Company Match, Employee Assistance Program, Tuition and Professional Development Assistance, 529 College Savings Plan.

Company Overview

Dependable Global Solutions (DGS), a Security and Intelligence Firm, was founded in September 2004 as a privately held small business. DGS’ principle belief is that security is not a singular endeavor. Our clients require the ability to recognize, plan for, and mitigate risk in all of its various forms.

DGS specializes in IT security, mission assurance, and intelligence operations and analysis. We build, manage, and enhance our client’s ability to identify and deal with threats and attacks in near real-time

Read More

Apply for this position

Required*
Apply with
Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

To comply with government Equal Employment Opportunity / Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.
Gender
Race/Ethnicity

Invitation for Job Applicants to Self-Identify as a U.S. Veteran
  • A “disabled veteran” is one of the following:
    • a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
    • a person who was discharged or released from active duty because of a service-connected disability.
  • A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
  • An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
  • An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.
Veteran status
I IDENTIFY AS ONE OR MORE OF THE CLASSIFICATIONS OF PROTECTED VETERAN LISTED ABOVE
I AM NOT A PROTECTED VETERAN
I DON’T WISH TO ANSWER

Voluntary Self-Identification of Disability
Voluntary Self-Identification of Disability Form CC-305
OMB Control Number 1250-0005
Expires 1/31/2020
Why are you being asked to complete this form?

Because we do business with the government, we must reach out to, hire, and provide equal opportunity to qualified people with disabilities.i To help us measure how well we are doing, we are asking you to tell us if you have a disability or if you ever had a disability. Completing this form is voluntary, but we hope that you will choose to fill it out. If you are applying for a job, any answer you give will be kept private and will not be used against you in any way.

If you already work for us, your answer will not be used against you in any way. Because a person may become disabled at any time, we are required to ask all of our employees to update their information every five years. You may voluntarily self-identify as having a disability on this form without fear of any punishment because you did not identify as having a disability earlier.

How do I know if I have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Blindness
  • Deafness
  • Cancer
  • Diabetes
  • Epilepsy
  • Autism
  • Cerebral palsy
  • HIV/AIDS
  • Schizophrenia
  • Muscular dystrophy
  • Bipolar disorder
  • Major depression
  • Multiple sclerosis (MS)
  • Missing limbs or partially missing limbs
  • Post-traumatic stress disorder (PTSD)
  • Obsessive compulsive disorder
  • Impairments requiring the use of a wheelchair
  • Intellectual disability (previously called mental retardation)
Please check one of the boxes below:

You must enter your name and date
Your Name Today's Date
Reasonable Accommodation Notice

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.


iSection 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.


PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Human Check*