This is a remote position.
We are seeking a skilled and proactive Tenable Engineer to join our team. The ideal candidate will be responsible for the design, deployment, configuration, and management of Tenable solutions, ensuring our organization maintains a robust vulnerability management program. This role requires expertise in Tenable Nessus and Tenable.io, along with strong knowledge of security best practices, network configurations, and compliance standards.
Key Responsibilities:
- Tenable Deployment and Configuration:
- Install, configure, and maintain Tenable solutions (Nessus, Tenable.sc, Tenable.io) to support organizational vulnerability management.
- Customize scan policies to address specific security requirements and business needs.
- Vulnerability Management:
- Conduct vulnerability assessments and ensure accurate detection of security threats.
- Analyze scan results, prioritize vulnerabilities, and provide actionable recommendations to mitigate risks.
- Work with IT and development teams to remediate identified vulnerabilities.
- Integration and Automation:
- Integrate Tenable solutions with existing security tools (e.g., SIEMs, CMDBs, and ticketing systems).
- Automate vulnerability management workflows using APIs and scripting.
- Compliance and Reporting:
- Support compliance initiatives by mapping scan results to relevant regulatory frameworks (e.g., PCI DSS, HIPAA, NIST, etc.).
- Generate and present detailed reports to stakeholders, including executive summaries for management.
- Security Program Support:
- Collaborate with security operations and IT teams to enhance overall security posture.
- Participate in security incident response as needed, leveraging Tenable tools for investigations.
- Continuous Improvement:
- Stay updated on the latest trends in vulnerability management and Tenable product updates.
- Provide training and guidance to team members on Tenable solutions.
Requirements
Required:
- Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
- 6-10 years. of hands-on experience with Tenable Nessus, Tenable.io, and/or Tenable.sc.
- Strong understanding of vulnerability management lifecycle, CVSS scoring, and risk assessment methodologies.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation.
- Experience with integrating Tenable solutions into broader IT ecosystems (e.g., SIEMs, ticketing tools).
- Knowledge of TCP/IP, networking protocols, and common security frameworks (e.g., NIST, CIS).
- Secret Clearance is required.
Preferred:
- Tenable Certified Engineer or other relevant certifications (e.g., CISSP, CEH, CompTIA Security+).
- Experience in cloud security and Tenable.io for cloud environments.
- Familiarity with container security and scanning tools.
- Strong analytical, problem-solving, and communication skills.
Skills Required
- Bachelor's degree in Computer Science, Information Security, or related field, or equivalent experience
- 6-10 years hands-on experience with Tenable Nessus, Tenable.io, and/or Tenable.sc
- Strong understanding of vulnerability management lifecycle, CVSS scoring, and risk assessment methodologies
- Proficiency in scripting languages for automation (Python, PowerShell)
- Experience integrating Tenable solutions with SIEMs, CMDBs, and ticketing systems
- Knowledge of TCP/IP, networking protocols, and common security frameworks (NIST, CIS)
- Secret Clearance
- Tenable Certified Engineer or other relevant certifications (CISSP, CEH, CompTIA Security+)
- Experience in cloud security and Tenable.io for cloud environments
- Familiarity with container security and scanning tools
- Strong analytical, problem-solving, and communication skills
What We Do
CDIT, headquartered in Slidell, LA, has provided technical services for both commercial and Federal customers for the past 18 years. We deliver high-value services with our Agile integrated approach, consisting of Lean-Agile frameworks, process maturity, best practices combined with information security and quality management standards. This integrated approach is paired with the principles of accountability, collaboration, and delivery established our core CDIT execution model. This model allows us to successfully deliver and perform on small to large-scale programs remotely and on-site. CMMI III DEV | ISO 9001:2015 | ISO 27001:2015
.png)