NIH - Vulnerability Assessment Lead

 Posted 9 days ago
     
⭐ 10+ years experience
Apply Now

Please mention DailyRemote when applying

AI Summary

Lead enterprise vulnerability assessment and management operations for the NIH, directing scanning activities and developing risk-based strategies. Coordinate remediation efforts across technical teams and provide executive reporting to reduce overall cybersecurity risk.
cFocus Software seeks a Vulnerability Assessment Lead to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
  • Public Trust Clearance
  • B.S. Computer Science, Information Technology, or a related field
  • 8+ years leading vulnerability assessment or vulnerability management programs.
  • Experience managing enterprise vulnerability scanning solutions.
  • Experience leading penetration testing efforts.
  • Experience supporting Federal cybersecurity programs.
  • Experience with RMF, FISMA, and NIST guidance.
  • Experience developing executive cybersecurity reports.
  • Ability to obtain and maintain NIH suitability/background investigation.

Duties:
  • Lead enterprise vulnerability assessment and vulnerability management operations.
  • Direct vulnerability scanning activities across NIH enterprise systems.
  • Develop enterprise vulnerability management strategies.
  • Establish vulnerability assessment priorities based upon risk.
  • Lead vulnerability remediation initiatives.
  • Coordinate remediation activities across technical teams.
  • Provide technical leadership for vulnerability management projects.
  • Continuously improve enterprise vulnerability management capabilities.
  • Analyze enterprise vulnerability scan results.
  • Perform vulnerability prioritization using risk-based methodologies.
  • Identify critical vulnerabilities requiring immediate remediation.
  • Evaluate exploitability and business impact.
  • Conduct root cause analysis.
  • Develop remediation recommendations.
  • Validate corrective actions.
  • Track vulnerability trends and recurring issues.
  • Coordinating remediation efforts with System Owners.
  • Tracking remediation progress.
  • Monitoring SLA compliance.
  • Escalating critical vulnerabilities within required timeframes.
  • Validating remediation completion.
  • Supporting risk acceptance processes.
  • Reducing enterprise cybersecurity risk.
  • Monitoring aging vulnerabilities.

Similar Jobs

See all Remote Others jobs β†’

Personalize your Remote Job Search in 3 Easy Steps!

Discover remote opportunities in Others

Answer easy questions

Answer easy questions

200,000+ jobs across 15+ categories

Get your best job matches

Get your best job matches

Only hand-screened, legit jobs

Find a remote job faster

Find a remote job faster

No ads, scams, or junk

I was the first applicant for a remote marketing position that got listed on the company website the same day I applied. Had an interview within 48 hours!

Sarah J. — Sarah J. · Marketing Manager ★★★★★ Verified