The Role
Perform credentialed host, network, application, and database vulnerability scans across NIH systems; schedule and execute recurring and specialized scans (including HVAs); operate, configure, and maintain enterprise vulnerability scanning infrastructure and tools; validate scan coverage, integrate scanning tools with enterprise capabilities, and develop remediation guidance from vulnerability data.
Summary Generated by Built In
cFocus Software seeks a Infrastructure Scanning Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
Duties:
Qualifications:
- Public Trust Clearance
- B.S. Computer Science, Information Technology, or a related field
- 5+ years of experience performing enterprise vulnerability assessments.
- Experience operating enterprise vulnerability scanning platforms.
- Experience performing credentialed host and network vulnerability assessments.
- Experience supporting Federal cybersecurity programs or large enterprise environments.
- Experience interpreting vulnerability data and developing remediation guidance.
Duties:
- Perform credentialed host, network, application, and database vulnerability scans across NIH/OD-managed systems.
- Schedule and execute recurring vulnerability assessments in accordance with Government-defined scanning frequencies.
- Perform specialized vulnerability assessments for High Value Assets (HVAs) and other designated systems.
- Validate scan coverage to ensure all approved assets are included within the enterprise vulnerability management program.
- Maintain scan schedules while minimizing operational impact.
- Operate, administer, and maintain the NIH/OD vulnerability scanning infrastructure.
- Configure, optimize, and maintain enterprise vulnerability scanning tools and supporting services.
- Ensure scanning infrastructure provides comprehensive enterprise visibility and situational awareness.
- Support integration between NIH/OD vulnerability management tools and existing enterprise vulnerability management capabilities.
- Maintain operational readiness of vulnerability scanning platforms.
Skills Required
- Public Trust clearance or ability to obtain
- B.S. in Computer Science, Information Technology, or related field
- 5+ years performing enterprise vulnerability assessments
- Experience operating enterprise vulnerability scanning platforms
- Experience performing credentialed host and network vulnerability assessments
- Experience supporting Federal cybersecurity programs or large enterprise environments
- Ability to interpret vulnerability data and develop remediation guidance
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
Established in 2006, cFocus Software automates FedRAMP compliance and develops government chatbots for the Azure Government Cloud, Office 365, and SharePoint. cFocus Software is the exclusive vendor of ATO (Authority To Operate) as a Service™, which automates FedRAMP compliance for the Azure Government Cloud and Office 365. Contact Us for a demo of ATO as a Service™ or a FREE government chatbot proof of concept project today!







