This site uses cookies. To find out more, see our Cookies Policy

USPS-IT Developer/Engineer VII, Public Trust or Secret Clearance|Tier II in Rockville, MD at GDH

Date Posted: 12/4/2018

Job Snapshot

Job Description

The Vulnerability Management Team Lead heads a dedicated team delivering world class Vulnerability Management services to one of the clients top government customer.
This individual should be knowledgeable of vulnerability management tools and processes and demonstrate the ability to communicate clearly and appropriately with clients. Applicant must be able to translate client requests into manageable deliverables and work with the team to deliver to them in an innovative, repeatable and accurate manner.
Role Responsibilities

• Responsible for ensuring the team, designs, executes, reviews, and interprets assessment and scanning program, reducing false positive findings, and acting as a trusted security advisor to the Client

• Responsible for working with leading team to assist with understanding threat data and vulnerabilities found on clients network

• Learn and adapt to clients culture, security strategies, security goals, security objectives, and security capabilities

• Responsible for leading team in implementing and maintaining Client asset classifications and categorizations, as applicable and per Client direction

• Maintain knowledge of outstanding vulnerability management issues as it pertains to the Clients Vulnerability Management Service and communicate updates to Client as appropriate

• Act as liaison between the Team and Client to work to provide relevant information pertaining to the delivery and support of the Clients Vulnerability Management Services (i.e. working to receive approval/sign off for any Vulnerability Management actions as it pertains to scan schedules, asset classifications, and modifications to scanning profiles)

• Collaborate with program management and Client teams to create both tactical and strategic plans (establish and communicate a clear vision and ensure short term issues do not overtake strategic goals)

• Serve as an escalation point for all Client technical issues requiring support within the - Vulnerability Management program
Our client expects its employees to understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 800-53 and FISMA. Employees will be required to maintain a working knowledge of local security policies and execute general controls as assigned.


• Minimum of 4 years of experience in Vulnerability Management

• Minimum of 1 year of experience leading a team.

• Bachelors in Computer Science, Computer Information Systems, Cybersecurity or another relevant technical field required.

• Active Secret Clearance


• One or more of the following certifications: CISSP, CISA QSA GPEN, GWAPT, OSCP

• Experience with authenticated scanning of large Windows and Linux enterprise environments.

• Ability to manage multiple individual and group projects from conception to delivery, and interact with members of cross-functional team, reach consensus, and show results

• Strong technical, analytical, and interpersonal skills; ability to motivate and inspire team members

• Experience with Vulnerability management platforms such as Tenable.

• Experience with network and application security testing tools and scripting languages Nessus, Nmap, Paros, Perl and Python

• Candidates with one or more of the following certifications will be given preferential consideration:
• CCIE Cisco Certified Internetwork Expert in Routing and Switching
• CCNP Security Cisco Certified Network Professional in Security
• CCSP Cisco Certified Security Professional
• CCNP Cisco Certified Network Professional

• CQS Cisco Firewall Security Specialist
• CQS Cisco ASA Specialist
• CQS Cisco VPN Security Specialist
• CQS Cisco Firewall Specialist
• CQS Cisco IOS Security Specialist
• CQS Cisco IPS Specialist
• CCNA Cisco Certified Network Associate
• CompTIA Network+

Contractors in positions that require privileged access to FDA computers or information systems must obtain at least a Public Trust Level 5 suitable/clearance based on favorable adjudication of a Moderate Background Investigation (MBI) and/or National Agency Check with Law and Credit (NACLC), including finger printing, performed under the auspices of the FDA. Public trust positions have duties that include policy making, major program responsibility, access to sensitive, proprietary, or financial information, audit, or security responsibilities, etc.

In line with new regulations mandated by the U.S. Office of Personnel Management Investigative Services and the Department of Health and Human Services, the FDA Personnel Security Branch is implementing the Electronic Questionnaires for Investigations Processing (E-QIP) System. As a result, electronic submission of the standard form 85, for suitability background investigations (NACI) or the Standard Form 85P, for Public Trust, is now required. The FDA requires all applicants to be processed for a suitability background investigation, in accordance with Executive Order 10450 and the Homeland Security Presidential Directive (HSPD-12), in order to obtain employment, gain access to FDA property and/or receive an FDA badge.

Public Trust Security Clearance is required for this position.