Defensive Cyber Operations Analyst (Reporting) (3079)at SMX(View all jobs) (https://www.smxtech.com/careers/)

　　Fort Belvoir, VA

　　SMX is seeking a DCO Analyst (Reporting) to support GISA at Ft. Belvoir, VA. The successful candidate will have familiarity with relevant regulations and compliance standards, particularly those pertaining to vulnerability scanning in the Army and IC environment. They will also have Site Lead Experience.

　　Essential Duties & Responsibilities

　　Work with Program Manager and Customer Leads to coordinate and oversee the daily operations of the site, ensuring that all activities align with the teams goals and standards.

　　Prepare detailed automated reports on identified vulnerabilities, including their severity, potential impact, and recommended remediation steps.

　　Analyze the results of vulnerability assessments and prioritize vulnerabilities based on their criticality, potential impact, and ease of exploitation.

　　Work closely with IT teams to track and manage the application of security patches and updates to mitigate identified vulnerabilities.

　　Stay up-to-date with the latest threat intelligence to understand emerging vulnerabilities and their potential impact on the AIE.

　　Ensure that the AIE complies with as DOD, Army and IC task orders, bulletins regulations and standards related to vulnerability management.

　　Collaborate with incident response teams to address vulnerabilities that have been exploited or could be exploited during a security incident.

　　Contribute to security awareness programs to educate employees about the importance of vulnerability reporting and the availability of reporting through automated methods.

　　Maintain records of vulnerability assessments, reports, and remediation efforts for audit and compliance purposes.

　　Required Skills, Experience & Education

　　Active TS security clearance and eligible for SCI and NATO read-on prior to starting work

　　Meet the DoD requirements for a privileged user on a TS/SCI information system prior to starting work - DoD 8140 / 8570.01-m requirements.

　　A bachelor's degree in a relevant field such as cybersecurity, information technology, or computer science.

　　Industry-recognized certifications can be beneficial, such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).

　　Proficiency in vulnerability scanning and cyber tools such as Nessus, Splunk, network analyzers, Big Data Platform / analytics, as well as knowledge of related tools and technologies.

　　In-depth knowledge of cybersecurity principles, best practices, and emerging threats.

　　Strong analytical and problem-solving skills are necessary to assess and prioritize vulnerabilities effectively.

　　Acute attention to detail is vital to ensure accurate assessments of vulnerability reporting.

　　The ability to communicate technical findings and recommendations to non-technical stakeholders is essential.

　　Collaboration with IT teams, security teams, and cross functional regional support groups is crucial to ensure the timely remediation of vulnerabilities.

　　Familiarity with DOD, Army and IC regulations and compliance requirements related to vulnerability management.

　　Current with the latest threats, vulnerabilities, and mitigation techniques in a DOD, Army and IC environment.

　　Must meet DoD 8570 level II certification compliance (i.e. possess one of the following certifications: CompTIA CySA+, CompTIA Security+, CCNA-Security, GICSP, GSEC, SSCP)

　　Desired Skills, Experience & Education

　　5 years’ experience on Army Intel programs.

　　2 years’ experience with AC2SP tenant assessment and accreditation activities.

　　#LI-TM1 #CJPOST

　　#LI-onsite

　　At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.

　　We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.

　　SMX is committed to hiring and retaining a diverse workforce. All qualified candidates will receive consideration for employment without regard to disability status, protected veteran status, race, color, age, religion, national origin, citizenship, marital status, sex, sexual orientation, gender identity or expression, pregnancy or genetic information. SMX is an Equal Opportunity/Affirmative Action employer including disability and veterans.

　　Selected applicant will be subject to a background investigation.