SiloSmashers, Inc. is a strategy, technology, and management consulting firm, founded in 1992, and located in Reston, Virginia. SiloSmashers delivers superior services and solutions to the public sector in the areas of project/program management, performance management, and IT security. The company provides innovative, collaborative business approaches, and proven methodologies that enable customers to break down organizational silos and optimize operational efficiency to achieve peak performance and mission success. Come join our team!

Summary:

SiloSmashers is looking for a Mitigation and Vulnerability SME to support a cybersecurity program for a federal customer. The candidate will be responsible for coordinating and streamlining the vulnerability management program. The candidate will also engage directly with various operational teams ensuring vulnerabilities are detected, prioritized, and remediation/mitigation actions are executed. The successful candidate will play a key role in operational reporting & metrics capability, ultimately ensuring the federal organization being supported can adequately be measured towards compliance to the standard set for enterprise vulnerability management.

The ideal candidate will be self-driven, possess the inherent interest to continue learning new technologies to solve problems and have a collaborative and continual improvement mindset in all facets of the role.

Job Duties:

• Leads multi-disciplined teams identifying and remediating security vulnerabilities
• Develops and executes continuous process improvement for vulnerability management and risk reduction.
• Implements, defines and improves current policies, standards, and procedures related Vulnerability Management: Vulnerability scanning, Vulnerability reporting, Coordination of patch management,
• Collaborates closely and regularly with operations & maintenance peers, Information System Security Officers (ISSOs), compliance and engineering stakeholders to identify, plan and deploy mitigation strategies at the enterprise level.
• Experience with managing ServiceNow tickets
• Makes recommendations for organization-wide system improvements, optimization or maintenance efforts
• Experience with managing Splunk
• Experience with security mitigation, vulnerability, and risk management, performing IT Security software update/upgrade, and implementing risk management framework.
• Experience in IT Operations security management including mitigation planning and recommendation, working directly analyzing vulnerability and applying patches/removing vulnerabilities on Microsoft Windows devices (Servers and workstations); Microsoft operating system, active directory, Server, and hardware issues such as servers and appliances.
• Experience supporting Microsoft enterprise environment involving the understanding of software such as Active Directory, DHCP, DNS, and file and print servers, supporting server performance tuning and monitoring tools.
• Experience with IP networking issues as it relates to local area networks while working with Network Engineers to troubleshoot advanced network issues.
• Experience deploying and managing secure video teleconferencing, audio- visual, and COMSEC equipment.
• Monitors and provides metrics on threat level of vulnerabilities
• Works with multi-functional teams to ensure systems development does not expose new threat vectors
• Assists in the design and development of threat mitigation strategy, prioritize identified threats, managing risks associated with threats

Qualifications:

• U.S. Citizen
• Security Clearance: Public Trust
• Certified Information System Security Professional (CISSP) certification AND one of the following Microsoft certifications:
  • Microsoft Certified Systems Administrator (MCSA) OR
  • Microsoft Certified Solutions Expert (MCSE)
• At least 10 years experience as a Mitigation and Vulnerability SME in the federal workspace
• Demonstrated outstanding level of professionalism in providing project review support, including ability to exercise good judgment, discretion, tact, and diplomacy supporting the federal workspace
• Strong analytical, problem-solving, and decision-making capabilities
• Focused, collaborative mindset
• Deft ability to facilitate deeper technical sessions while clearly articulating highly technical discussions to non-technical stakeholders
• Strong analytical, problem-solving, and decision-making capabilities
• Team player with the ability to work in a fast-paced environment with a continuous process improvement culture
• Ability to multi-task in a fast-paced environment
• Demonstrated outstanding level of professionalism in providing project review support, including ability to exercise good judgment, discretion, tact, and diplomacy
• Sound business ethics, including the protection of proprietary and confidential information
• Excellent written and verbal communication skills; ability to understand and effectively communicate technical concepts in a compelling, persuasive manner to non-technical persons.
• Excellent ability to interact skillfully and diplomatically with numerous counterparts and rapport, including contract stakeholders and government representatives.
• Capable of working under tight deadlines and on several projects simultaneously.
• Excellent time and resource management skills.
• Proficiency in MS Office applications.
• Ability to work independently and function effectively as a member of a team and adhere to strict deadlines.
• Ability to understand and communicate technical/business solutions to personnel at all levels of the organization.
• Must be able to demonstrate extremely strong interpersonal skills, initiative, and work ethic
• Ability to work odd hours outside of standard schedule as needed, e.g., weekends or after normal work hours.
• Previous Mitigation and Vulnerability Management experience supporting DHS is a plus preferred
• Experience directing or performing continuous vulnerability assessments, and penetration tests preferred
• Experience administering and patching Linux, and Windows servers/workstations preferred
• COVID-19 continues to significantly impact our employees, families and communities. With employee health and safety as our top priority, and as a federal contractor, SiloSmashers is taking action to address the increased risk and uncertainty COVID variants pose in the workplace and ensuring we meet our commitments to national security. As directed by Executive Order 14042: Ensuring Adequate COVID Safety Protocols for Federal Contractors, effective December 8, 2021, SiloSmashers requires all newly hired employees to be fully vaccinated before their start date (providing proof) or submit an accommodations request for medical or sincerely held religious beliefs after accepting and signing extended offer.

What we offer:

SiloSmashers offers its employees opportunities to be their best in careers in management and technology consulting. There is a place at SiloSmashers for experienced professionals, transitioning military personnel, new graduates, cleared professionals, and referrals from current SiloSmashers employees. At SiloSmashers you will do important work, surrounded by professional colleagues, in a company that is dedicated to client satisfaction.

SiloSmashers strives to offer an environment where employees can achieve everything that is important to them. To support this philosophy, we provide not only competitive compensation, retirement benefits, health benefits, and work-life and wellness programs, but also leave programs, and career growth opportunities. For more information, please visit the SiloSmashers website at www.SiloSmashers.com.

SiloSmashers, Inc., is an Equal Opportunity Employer.