Vat Analyst Junior Jobs

ISYS Technologies is a reputable technology services company to the Federal Government. Whether the focus is on space exploration, national security, cyber security, or cutting-edge engineering applications, ISYS is ready to offer you the chance to make a real-world impact in your field and for your country. We provide long-term growth and development. Headquartered in Colorado, ISYS is engaged in programs across the country and in more than 20 states. Our programs support multiple Federal agencies, the Department of Defense and often focused on the space initiatives of our government customers.

The VAT Analyst will be assisting with the Enterprise Information System Vulnerability Management (ISVM) compliance validation, execute Vulnerability Scans and will conduct vulnerability assessments of IT systems. Perform research on current vulnerabilities, support Incident Response and SOC functions as related to vulnerabilities. Will be responsible for authoring security advisories.

BS degree Science, Technology, Engineering, Math or related field and 1+ years of prior relevant experience. Relevant experience is within one of the following: areas pentesting, security technical assessments or supporting vulnerability scanning/management program.

Expertise and experience conducting assessments and vulnerability scans against web, database, operating system, wifi and network devices using DHS CDM vulnerability scanning tool suites.

Experience customizing and maintaining scan polices, scan schedules, inventories, zones, and repositories on scanning tools.

Experience providing formal and adhoc reports on security vulnerabilities

Experience reviewing scan results to ensure accurate findings

Experience the vulnerability assessment component of DHS Audits and FISMA security authorization, and on-going authorization activities.

Detailed oriented, strong problem solving abilities with an analytic and qualitative eye for reasoning under pressure

Self-starter with the ability to independently prioritize and complete multiple tasks with little to no supervision

Strong written, oral and presentation communication skills

Must have an active Secret Clearance.

Expertise with DHS CDM tools, specifically vulnerability scanning tools suite.
Tenable Security Center, Appdetective, WebInspect and Burp Suite

Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell

Certifications:
One or more of the following certifications:
CEH, LPT, ECSA, ENSA, CNDA, ECSS, ECSP, ECES, CISSP, CCSP, SEI, OSEE, ISWP, OSCE, OSCP, CCNA Security, GPEN, GWAPT, GCIH, GAWN, GMOB, GYPC, GXPN

One of more of the following:

CCFP – Certified Cyber Forensics Professional
CCISO – Certified Chief Information Security Officer
Cisco Certified Network Associate (CCNA)
CCNA Industrial
CCNA Security
Cisco Certified Network Professional (CCNP)
CCNP Security
CCSP – Certified Cloud Security Professional
CEH – Certified Ethical Hacker
CHFI – Computer Hacking Forensic Investigator
CISSP – Certified Information Systems Security
CNDA – Certified Network Defense Architect
CompTIA Advanced Security Practitioner (CASP)
CompTIA Cloud+
CompTIA Linux+
CompTIA Network+
CompTIA Security+
CSSLP – Certified Secure Software Lifecycle Professional
Cyber Analyst Course (DCITA)
ECES – EC-Council Certified Encryption Specialist
ECIH – EC-Council Certified Incident Handler
ECSA – EC-Council Certified Security Analyst
ECSP – EC-Council Certified Secure Programmer
ECSS – EC-Council Certified Security Specialist
EnCE
ENSA – EC-Council Network Security Administrator
GAWN – Auditing Wireless Networks
GCED – Certified Enterprise Defender
GCFA – Forensic Analyst
GCFE – Forensic Examiner
GCIA – Intrusion Analyst
GCIH – Incident Handler
GCWN – Windows Security Administrator
GICSP –Cyber Security Professional
GISF – Security Fundamentals
GISP – Security Professional
GMON – Continuous Monitoring Certification
GNFA – Network Forensic Analyst
GPEN – Penetration
GPPA – Perimeter Protection Analyst
GREM – Reverse Engineering Malware
GSEC – Security Essentials
GSNA – System and Network Auditor
GSSP – Secure Software Programmer
GWAPT – Web Application Penetration Tester
GWEB – Web Application Defender
GXPN – Exploit Researcher and Advanced Penetration Tester
LPT – Licensed Penetration Tester
MCSE – Microsoft Certified Solutions Expert (Server)
OSCE (Certified Expert)
OSCP (Certified Professional)
OSEE (Exploitation Expert)
OSWP (Wireless Professional)
SEI (Software Engineering Institute)
SSCP – Systems Security Certified Practitioner

Perferred Qualifications:

Prior Pentesting experience within DOD, or US Federal Civilian agency

ISYS Technologies is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected Veteran status, or disability status.

In compliance with Colorado’s Equal Pay for Equal Work Act, the annual base salary range for this position is listed . Please note that the salary information is a general guideline only. ISYS Technologies considers factors such as (but not limited to) scope and responsibilities of the position, candidate’s work experience, education/training, key skills, internal peer equity, as well as, market and business considerations when extending an offer.