Red Team Vulnerability Analyst

Location: Fully Remote Salary*: $55,000 - $75,000

• Dependent upon qualifications

Summit 7 is here to rise above the ordinary. The work we do here goes far beyond day-to-day projects - it further protects the US defense industrial base from cyber threats, fosters thought leadership, and creates growth opportunities. Our support staff, sales team and technicians are all coming together to make a difference. We also recognize that you're a person with life beyond work, that's why we invest in meaningful health and welfare benefits such as:

• Excellent health/dental benefits from BCBS and Ameritas
• See into the future with our luxurious VSP vision benefits
• Prepare for the long-haul courtesy of our 401k with company matching
• 10 days' vacation, 7 days sick time
• Bonuses and salary increase potential via our certifications plan

We do cool work here, defying expectations by simply being who we are - each of us makes an impact. We are seeking a skilled and experienced engineering lead to join our team and play a critical role in ensuring the excellence of our technical support operations. You will play a pivotal role in enhancing our technical support capabilities, improving documentation, and collaborating closely with the engineering manager and other stakeholders to ensure seamless service delivery. Duties and Responsibilities: Vulnerability Assessment and Management

• * Conduct regular vulnerability scanning using industry standard tools.
• Ingest vulnerability reports for analysis.
• Initiate device patching for discovered vulnerabilities.
• Create manual patching scripts for vulnerabilities as needed.
• Test developed patches in controlled/sandboxed environments.
• Research newly discovered vulnerabilities and assess their potential impact.
• Prioritize remediation efforts to meet company expectations and service level agreements.

Red Team Engagements

• * Assist with vulnerability exploitation recommendations during Red Team operations.
• Assist with security assessments during Red Team operations.
• Assist with validating security controls during Red Team operations.

Reporting

• * Create professional reports and/or dashboards for all vulnerability scanning and remediation efforts.
• Be able to discuss vulnerability scanning and remediation efforts for both executive and technical audiences.

Collaboration

• Work with members of the SOC and NOC to support ongoing vulnerability remediation efforts.
• Support audit and compliance activities related to vulnerability scanning and remediation.
• Work with colleagues to improve skills needed for the advancement of overall Red Team goals.

Job Specifications Required

• 2+ years of experience in vulnerability management, security assessments, or a related role.
• Experience with vulnerability management platforms such as Qualys, VSA, and Tanium.
• Familiarity with CVSS, CVE, and other vulnerability scoring/risk rating systems.
• Familiarity with security frameworks.
• Familiarity with patch management and system hardening processes and procedures.
• Strong scripting experience.
• Strong attention to detail.
• Strong time management and organizational skills.

Certifications

• Security+ (Required)
• Certified Ethical Hacker (CEH) (Preferred)
• CompTIA Pentest+ (Preferred)
• Vendor-specific certifications or training certificates for vulnerability management platforms such as Qualys, VSA, and Tanium (Preferred)

Optional / Desired

• Bachelor's degree in IT, Computer Science, Cybersecurity, or a related field.
• Azure Gov Cloud and Office 365 GCC/GCCH experience.

Export Control Notice: This position may involve access to information subject to U.S. export control laws, including the International Traffic in Arms Regulations (ITAR) or the Export Administration Regulations (EAR). Qualified applicants will be considered regardless of national origin or immigration status. If a candidate does not meet the definition of a "U.S. Person" (as defined in 22 CFR 120.15), the company will assess whether an export license is required. If a license is required, any offer of employment will be contingent upon the candidate's eligibility for, and the company's ability to obtain, such a license in accordance with U.S. law. A "U.S. Person" includes U.S. citizens, lawful permanent residents, asylees, and refugees. Summit 7 Systems is an equal opportunity/ affirmative action employer and an alcohol and drug free workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Work Location: Remote Apply tot his job Apply To this Job