Cyber Command Vulnerability Management Specialist

Cyber Command Vulnerability Management Specialist

Job Title: Cyber Command Vulnerability Management Specialist

Pay Rate: $55 to $60 per hour

Location: Brooklyn, NY

Schedule: Hybrid, Full-Time

Job Summary: The Cyber Command Threat Management division within OTI is seeking a Vulnerability Management Specialist to serve as a subject matter expert in vulnerability management.

Key Responsibilities

• Research and analyze CVEs, CVSS, vector strings, NVD, Mitre, and attack vectors.
• Brief management and team members on risk assessments and mitigation strategies.
• Design, architect, and build Rapid7 vulnerability scanning infrastructure.
• Manage and configure vulnerability scans in Rapid7 across various networks.
• Conduct vulnerability analysis using Rapid7 dashboards and industry data.
• Evaluate vulnerabilities, assess risk, and develop mitigation strategies.
• Present technical briefings to internal teams and external stakeholders.
• Create and utilize scripts (Python, PowerShell, etc.) to automate scanning tasks.
• Automate detection, reporting, and tracking of identified vulnerabilities.
• Generate detailed analysis and reports using Rapid7, Excel, and PowerPoint.
• Travel within NYC for project-related work when required.

Mandatory Skills & Experience

• Minimum 8 years of experience in Cybersecurity with a focus on vulnerability management.
• Strong knowledge of CVEs, CVSS, vector strings, NVD, Mitre, and attack vectors.
• Proven experience in the design and execution of Rapid7 vulnerability scans.
• Ability to analyze scan results, assess risk, and recommend mitigation.
• Experience in developing and implementing remediation strategies.
• Skilled in conducting cybersecurity intel research and reporting findings.
• Advanced scripting skills in Python, PowerShell, or similar tools.
• Expertise in Microsoft Excel, particularly VLookup and Pivot Tables.
• Ability to present vulnerability risk reports to technical and non-technical audiences.
• Familiarity with current cyber threat landscape, tactics, and techniques.
• Experience working with agencies to promote Cyber Command initiatives.
• Proficiency in Tableau for reporting and analytics.
• Knowledge of network security technologies: firewalls, IDS, DNS, VPN, proxies, etc.
• Experience across multiple platforms: Windows, Linux, VMWare, Cisco IOS, Mobile OS.
• Understanding of encryption, encoding, hashing, and public-key cryptography.
• Familiarity with security frameworks and best practices: NIST, CIS, Microsoft, Palo Alto, etc.
• Experience analyzing and developing cybersecurity documentation.
• Strong background with Windows and Linux servers.
• Excellent written and oral communication skills.
• Strong organizational and analytical skills.
• Relevant certifications such as CISSP, GSEC, GCIA, GCIH, CEH, CWAPT.

Compensation: $55 to $60 per hour