Nessus Subject Matter Expert

Foreground Security - Pensacola, FL4.3

Full-timeEstimated: $110,000 - $130,000 a year
Save
EducationSkills
The Nessus Subject Matter Expert will support Raytheon's DOMino contract, a single-award IDIQ worth over $1 billion. This contract delivers full lifecycle development and sustainment for the Department of Homeland Security’s (DHS) National Cybersecurity Protection System (NCPS). The NCPS assists more than 100 federal civilian government agencies with the protection of their networks against advanced cyber threats. Under this contract, Raytheon will support the government in the design, development, operations and maintenance services for the NCPS. Raytheon will build the mission critical cybersecurity solutions that will enable the timely dissemination of threat warnings and improve information sharing across DHS's stakeholder community.

The successful Nessus Subject Matter Expert supports the development and implementation of cyber engineering strategies, tools and techniques to enhance a system’s cyber-resiliency against existing and emerging cyber-threats. The successful candidate will be required to perform hands-on technical analysis of test data and use critical thinking and a broad understanding of different technologies to identify areas susceptible to cyber-attack, based upon provided cyber-threat intelligence. Upon identifying susceptibilities, assist in developing recommended improvements to engineering requirements and specifications. The candidate will support development of presentations and reports to document findings, and will require good communication and interpersonal skills to convey findings in a tactful manner and at the technical proficiency of the audience.

Responsibilities also include:
Capable of providing cybersecurity engineering support on systems, system elements, interfacing systems, components, security tools, devices and/or processes for developmental and operational cyber tools
Possess in-depth technical and theoretical knowledge of cyber defensive operations and technologies
Capable of working independently or as a team member to solve cybersecurity engineering problems
Develop and analyze available COTs cyber protection tools that will improve security posture and provide recommendations that support the remediation and protection of systems
Perform requirements traceability to assessment findings
Perform cyber criticality, mission impact, and risk analysis of recommended tools
Translate analytical findings into security “use cases” that can be implemented within available surveillance capabilities
Provide detailed and accurate technical reporting of analysis results in the form of PowerPoint presentations and/or Word documents, as well as oral briefings on complex technical subjects attuned to senior management, technical, or non-technical audiences

Required Skills:
Installing and Configuring Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center on both Linux/Unix and Windows based environments
Secure Tenable server an Enable SSL
Integrating Tenable products with LDAP, Active Directory, and CyberArk.
Responsible for the creation of tenable Organizations, Repositories, and Scan Zones.
Responsible for local and LDAP based user management.
Responsible for configuring tenable plugins/feeds and adding audit files
Responsible for licensing the product both online and offline.
Responsible for adding scan policies, audit policies, and credentials to Security Center, and Nessus Manager.
Responsible for configuring Nessus Manager scan pulls to Security Center
Responsible for importing and adding dashboards
Must have an active Top Secret Clearance with SCI eligibility. Must be able to obtain DHS suitability prior to starting employment

Desired Skills:
Should hold one or more of the following certifications in good, current standing: CISA, GCIH, GCED, CISSP, CASP, or Security+
Experience with Cybersecurity Ark and SailPoint
Experience with implementing PKI and PIV standards
Experience with federation technologies and solutions -Knowledge of information security best practices
Knowledge of Active Directory design and configuration
Knowledge of Enterprise Directory architecture
3+ years of related Identity Management tools engineering experience, including installing, configuring and troubleshooting experience with one or more of these tools:
CyberArk
SailPoint
CA PAM
Tenable-Nessu

One or more active certification listed below:
Tenable Certificate of Proficiency
SailPoint Certified IdentityIQ Engineer
SailPoint Certified IdentityIQ Architect
CyberArk Trustee certification (Level 1)
CyberArk Defender certification (Level 2)
CyberArk Sentry certification (Level 3)
CyberArk Guardian certification (Level 4
Able to work across multiple organizations, cultures, and service providers to synthesize actionable information

Required Education (including Major):
  • Bachelor's degree and a minimum of 8 years of prior relevant experience.
  • A Master’s degree in a related discipline may be substituted for two (2) years of experience
  • Professional experience may be substituted for a degree
This position can be located in Arlington, VA or Pensacola, FL.

DOMino

This position requires a U.S. Person who is eligible to obtain any required Export Authorization. 139549
Business Unit Profile
Raytheon Intelligence, Information and Services delivers innovative technology to make the world a safer place. Our expertise in cyber, analytics and automation allow us to reach beyond what others think is possible to underpin national security and give our global customers unique solutions to solve the most pressing modern challenges - from the cyber domain to automated operations, and from intelligent transportation and training solutions to creating clear insight from large volumes of data. IIS operates at nearly 550 sites in 80 countries, and is headquartered in Dulles, Virginia. The business area generated $6.2 billion in 2018 revenues. As a global business, our leaders must have the ability to understand, embrace and operate in a multicultural world - in the marketplace and the workplace. We strive to hire people who reflect our communities and embrace diversity and inclusion to advance our culture, develop our employees, and grow our business.
Relocation Eligible
No
Clearance Type
Top Secret - Current
Expertise
Cyber Jobs
General Engineering
Systems Engineering
Technical