Cimarron is seeking a Vulnerability Assessment Analyst to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at either Schriever Space Force Base in Colorado or the Redstone Arsenal in Alabama.
Key Duties:
- Perform Defensive Cyber Operations (DCO) and Cyber Security Service Provider (CSSP) duties as outlined in Evaluator Scoring Metrics (ESM).
- Perform cybersecurity tasks on customer networks, both proactively and reactively, to enhance enterprise-wide security posture.
- Conduct and analyze vulnerability scans using tools such as Prisma and ACAS/Nessus.
- Analyze asset, threat, and vulnerability data against known adversary exploits and techniques to assess impact and improve network defense.
- Support the development, maintenance, and documentation of DCO procedures, processes, and manuals.
- Assist with the Anti-Malware program by forwarding alerts, responding to malware reports, and helping implement protective measures.
- Provide support for host-based security using DoD Endpoint Security Solutions (ESS), including antimalware, intrusion protection, data loss prevention, and rogue system detection.
- Generate and escalate vulnerability assessment reports for customer review.
- Create, update, and manage queries and dashboards related to ESS, ACAS, and other cybersecurity tools.
- Support Incident Response activities across the enterprise in accordance with DoD regulations and instructions.
Required Skills, Experience, and Education:
- Due to facility security requirements, only U.S. citizens are eligible for consideration at this time.
- Ability to complete a pre-employment background check and drug screening, which will include but is not limited to testing for marijuana use.
- Active Secret Clearance.
- Ability to support rotating shifts in a 24/7 operational environment and respond quickly to emergencies as needed.
- 2 or more years of experience performing vulnerability scans or analysis using enterprise scanning tools.
- 2 or more years of experience with cybersecurity frameworks or conducting risk assessments.
- Experience with most MS Office applications (Word, Excel, PowerPoint, and Visio).
- Ability to multi-task and prioritize various projects and assignments in a dynamic work environment to meet scheduled/unscheduled customer requests.
- Experience performing the full life-cycle of incident response and enterprise-level monitoring.
- Possesses a current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) (e.g., CySA+, GICSP, GSEC, Security+ CE, or SSCP).
- Ability to obtain a DoD 8570.01-M CSSP Auditor certification (e.g., CEH, CySA+) within six months of hire.
- High school diploma or equivalent and 4 or more years of experience, Associate degree, or Bachelor's degree.
Desired Skills, Experience, and Education:
- Active Top Secret Clearance.
- Experience with security analysis and solutions in a WAN/LAN environment, including routers, switches, network devices, and operating systems such as Windows and Linux.
- Experience using Security Operations Center (SOC) or Defensive Cyber Operations (DCO) tools and applications such as firewalls, intrusion detection/prevention systems, Network Security Manager, Bluecoat, and Barracuda.
- Experience performing security compliance scans across a WAN, with preference for ACAS/Nessus.
- Background in configuration, troubleshooting, and deployment of host-based security tools, with preference for DoD Endpoint Security Solutions (ESS).
- Ability to mentor and train personnel in a dynamic, fast-paced environment.
- Familiarity with Department of Defense Security Operations Centers (SOC), also known as Cybersecurity Service Providers (CSSP).
- Familiarity with DCO/CSSP-guiding security policies and procedures.
- Bachelor's degree (or higher) in Cybersecurity, Computer Science, or a related field.
Business Profile:
Cimarron is a global solutions company with a strategic partnering approach to satisfying customer-driven requirements. We ensure customer success with a modern approach and experienced leadership. Driven by an entrepreneurial spirit, Cimarron is fueled by highly skilled employees, developing new innovative technologies, and delivering superior products and services. We believe in recognizing employees' worth by offering competitive salaries and benefits, including health, dental, and vision insurance, 401(k) contributions, educational reimbursement, and much more. From company communication through Company-wide information meetings led by our President and CEO, to an Awards program designed to recognize our amazing employees and their accomplishments, you will not only feel like you are a part of a team, you will be a valued member of the Cimarron family. Cimarron is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or any other characteristic protected by federal, state, or local law.