At Areté, we are on the forefront of utilizing innovative solutions, with great minds from all backgrounds, to help solve the nation's most complex security challenges. We strive for an inclusive, collaborative team environment that approaches differences as opportunities for innovation and excellence. As an employee-owned company, we foster an atmosphere that propels diverse career opportunities and professional growth.
Discover your future with us.
Areté is seeking a full time
Vulnerability Analystto work in our
Northridge, CA or
Falls Church, VA facility. The selected candidate must be eligible to maintain a Top-Secret clearance. This individual as part of the Cyber team will provide prioritization to vulnerabilities within the environment, effectively and timely. The candidate will serve as the vulnerability scanning and remediation SME. The candidate may be required to travel occasionally and provide some afterhours support. This is an exempt, non-supervisory, full-time position.
Primary responsibilities include:- Conduct regular vulnerability assessments to identify potential security threats and serves as the technical expert and have primary responsibility for vulnerability scanning and remediation of desktops, servers, and other devices running a variety of software and operating systems across multiple sites, networks, and standalone systems.
- Perform continuous vulnerability patching schedules based on cyber tool scan scoring, based on schedule authorized by appropriate board. Analyze vulnerability scan results using Tenable Security Center and Rapid 7 to provide recommendations for remediation.
- Coordinate with system owners and users of upcoming patches and projected impacts from patching activity, such as reboots, new features being introduced, or updates affecting the entire network.
- Develop and maintain vulnerability management processes and procedures.
- Collaborate with cross-functional teams to implement security measures and patches to mitigate vulnerabilities.
- Stay up to date on the latest security threats and vulnerabilities and make recommendations for proactive measures.
- Conduct risk assessments to identify potential vulnerabilities and develop risk mitigation strategies.
- Investigate and respond to security incidents, including performing root cause analysis and implementing corrective actions.
- Communicate complex technical information to non-technical stakeholders.
- Work closely with the IT and security teams to ensure all systems and networks are compliant with industry standards and regulations.
- Prepare and present reports on vulnerability management activities and findings to senior management.
- Continuously improve and enhance vulnerability management processes and tools to ensure effective and efficient operations.
- Maintains and reports metrics for vulnerability management functions.
- Attends meetings and serves as the SME for vulnerability management.
- Participate in the development and implementation of security policies and procedures.
- Other duties, as assigned.
We have an impressive range of benefits, programs, and perks that we offer:
Generous PTO and Leave Times- Bereavement
- Paid Time Off (PTO)
- Paid Parental Leave
Financial Benefits- 401K Retirement Plan Contribution
- Employee Stock Ownership Plan
- Continuing Education Funds
Health, Medical, and Wellness Benefits- Medical Insurance
- Dental & Vision Insurance
- Life Insurance and Long-Term Disability (LTD)
- Vision Reimbursement
Qualities We Look For- Creativity
- Integrity
- Passion
- Responsiveness
- Collaboration
Experiences and Background We Look For:- Ability to obtain and hold a Top-Secret clearance.
- Must have or be able to obtain a Security+ CE or equivalent certification for DoD 8140 / 8570 IAT Level II or higher within 120 days of employment.
- Minimum of 3 years working as a System Administrator, Engineer, Network Administrator or similar role.
- Bachelor's Degree in an Information Technology related discipline and/or current, applicable industry-standard certifications (MCSA, CCNA, Security+, RHCSA) or an additional 3 years of experience.
- Proficient understanding of computer hardware configuration, software, and operating systems (primarily Microsoft Windows and Red Hat Enterprise Linux).
- Working knowledge of vulnerability scanning products such as Rapid7 (preferred), Qualys, or Tenable.
- Experience with patch management tools and technologies such as SCCM/SolarWinds (preferred) or YUM.
- Expert level system troubleshooting skills and experience. Strong interpersonal skills, ability to work autonomously and on a team.
- Strong written communication skills and the ability to produce technical documentation.
- Must be able to lift 25 pounds.
Nice to Have:- TS/SCI Clearance with Poly.
- Experience with patching solutions such as WSUS, YUM, and SolarWinds.
- Testing patches using a systematic process to limit impact to user base.
- Some experience with vulnerability scanning software.
The salary range for this role is $65,000 to $90,000; however, Arete considers several factors when extending an offer of employment, including but not limited to: the position and associated responsibilities, a candidate's work experience, education/training, and key skills
.Other Requirements U.S. citizenship is required to meet position eligibility.
Selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.
Successful passage of a criminal background screen is required to meet position eligibility. Areté will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the Los Angeles Fair Chance Initiative for Hiring.
Successful passage of a Department of Transportation (DOT) drug test is required to meet position eligibility.
Other ConsiderationsAreté is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected Veteran Status, or any other characteristic protected by applicable federal, state, or local law.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our website because of your disability. To request an accommodation, please contact Areté Human Resources at for assistance.PandoLogic. Category:Technology,