Lead Vulnerability Management & Cloud / Container Security SME

Are you a seasoned security specialist with expertise in vulnerability management and compliance in both cloud and on-premise environments? Are you looking for a new challenge to expand your knowledge in security and help us advance our client’s security program, including container security? This might be the role for you! In this position as a Lead Vulnerability Management & Cloud / Container Security SME, you will be responsible for leading a small team to operate a vulnerability management and compliance program covering operating system web application, and container scanning. This role will see you working with a variety of technical and compliance teams across the organization. Strong communication and organizational skills are a must. This is a hands-on leadership role. You will actively work on the tools as a subject matter expert along with leading the team. 

Candidates will join a fast-paced and creative cybersecurity team. Valiant Solutions is a company that cares about its employees- we've been named one of the Best Places to Work in the Washington DC area TEN years in a row!  If you are interested in learning more about Valiant and this opportunity, we invite you to apply now! 

This position allows for 100% remote work. Remote work necessitates a high-level trust in our employees and we strictly adhere to the details found below in our Remote Work Policy. 

Responsibilities Include:

Vulnerability Management Program

• Provide opportunities for proactive vulnerability management by reviewing enterprise risk through internal and external data sources

• Coordinate with Threat Intelligence and Threat Hunt functions to establish and define agency specific risk and mitigation priorities
• Enterprise Vulnerability and Risk sharing and coordination
• Routine and targeted vulnerability communication and sharing activities
• Explanation of problems, vulnerabilities, and risk to clients
• Assist with Tenable.sc/io and Nessus Manager Enhancements, examples:
• Advise on tool enhancements for: Design, configuration, and operation of Tenable
• Assist in troubleshooting and resolution of technical issues
• Configuration of vulnerability reports and dashboards (for VM program)
• Assist with Web Application scanning program enhancements, examples:
• Advise on tool enhancements for: Deploy and configure web application scan tools
• Assist in troubleshooting and resolution of web application scan issues
• Perform automated authenticated and unauthenticated scans
• Planning and executing the continuous advancement of tools alongside operations
• Recommending new solutions to the government
• Researching enhancement opportunities
  
  

Container and Cloud Security

• Management, operation and enhancement of Container security tools not limited to Palo Alto Prisma (Twistlock) and Stackrox
• Full operational support for Cloud and Container Security Tools
• Design, configuration and operation of cloud & container security tools
• Troubleshooting and resolution of technical issues
• Continuous advancement of the configuration alongside operations
• Increase enterprise enrollment / onboarding of systems into tools
• Provide administrative support to users and resolution to issues
• Tune policies, rules and alerts to match agency policies and established settings
• Define new policies, rules and alerts to enhance security visibility
• Coordinate with SOC and IR functions for resolution and tuning
• Coordinate with Threat Intel and Hunt functions for reviews of enterprise risk
• Coordinate with log and analysis teams to enhance data shipped to logging platform 

Position Requirements:

10+ years of experience in Information Technology: The successful candidate will demonstrate deep technical knowledge in the management and configuration of operating systems, networks, and software. This experience will include in-depth knowledge of OS authentication mechanisms and permissions and a solid understanding of networking. Acceptable experience may be solely in a security context or in software development or systems engineering.

6+ years of experience in Vulnerability Management: The successful candidate will have at least six years of experience supporting a vulnerability management program for a large organization. This experience must have included the design and deployment of highly available vulnerability scanning solutions (including compliance scanning). This experience must also include the design, implementation, and configuration of Tenable Security Center, Tenable.io/sc. The candidate must demonstrate depth of understanding of a variety of operating system and software vulnerabilities

8+ years of experience in Cybersecurity: The successful candidate must demonstrate broad security experience to perform in this position. The candidate’s security knowledge must include focus on vulnerabilities, risks, and security mechanisms that are common in today’s government systems.

2+ years of container security experience: The successful candidate will have designed, deployed, and operated a container security tool such as Twistlock, Stackrox, or Black Duck. The candidate must demonstrate knowledge of container technologies and understand the associated security challenges and how they can be mitigated.

Required qualifications:

• CISSP or CEH, an AWS associate level certification OR a professional level systems engineering certification e.g. RHCE
• B.S. in Computer Science, Information Systems, Mathematics, Engineering, related degree or an additional 3 years of experience

About Valiant Solutions

Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. We are a HUBZone small business and we encourage all candidates who live in a HUBZone to apply. Named one of the fastest growing privately held companies by Inc. 5000, Washington Technology’s Fast 50, and Washington Business Journal’s Best Places to Work in the D.C. area, Valiant Solutions prides itself on providing its employees with great benefits and career development opportunities. As a company, we are just as committed to growing careers as we are to building world-class IT solutions, all while enjoying an unparalleled work-life balance. We are in a phase of tremendous growth and building the team that will take us to the next level. We seek people whose talents and accomplishments will contribute to a thriving company, who have the character to support their capacity, and can make a positive impact on our culture. Alongside our talented team, you’ll learn to think quickly on your feet and expand your own personal and professional skill set. Our management team will inspire you to consider new perspectives and challenge you to become a better practitioner in the fast-paced industry of IT security. We hire people we respect – and we trust them to deliver results leveraging their expertise. If you would enjoy working in a dynamic environment as part of a stellar team of professionals, then we invite you to apply online today.

Benefits Snapshot (includes, but not limited to)

Valiant pays 99% of the Medical, Dental, and Vision Coverage for Full-time Employees

Valiant contributes 25% towards Health Coverage for Family and Dependents

100% Paid Short Term Disability and Life Insurance Policy for Full-time Employees

100% Paid Certifications

401K Matching up to 4%

Wellness & Fitness Program

Paid Time Off

Paid Time On – 40 hours to pursue innovation

Valiant University – Online Education and Training Portal

Reimbursement for Public Transit and Parking

FSA programs for: Medical Costs, Dependent Care, Transit, and Parking

Referral Bonuses

Remote Work Policy 

Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and Valiant's clients. In alignment with Valiant's inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General’s effort to eliminate conflicting employment, all Valiant employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval.  Employees may not solicit or conduct any outside business during core business hours for Valiant Solutions and our clients.

The salary range for this position is a general guideline and not a guarantee of compensation or salary. It has been benchmarked in relation to the scope of the role, market rate, and internal equity. The salary for this role is expected to be in the $115,500 - $149,500 range. Where a candidate falls within the band can be determined based on one or more of the following: skillset, experience level, achievements, education, geographic location, security clearance, involvement in corporate tasks, and other non-discriminatory factors. In addition to the base salary, this role will include benefits as described above.  Valiant reserves the right to adjust the salary range, experience requirements, and position responsibilities at any time without prior notice. 

Equal Employment Opportunity

Valiant Solutions is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, national origin, sex (including pregnancy, sex stereotyping, gender identity, gender expression or transgender status), religion, age, marital status, sexual orientation, military/veteran status, physical or mental disability, genetic information/history or any other personal characteristic protected by law.

Physical Demands

Sitting or standing at a desk for prolonged periods of time and consistent operation of a computer. Frequent communication and exchanging of accurate information via electronic communication, phones, and in person. Occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.

Authorization to Share Resume and Personal Information

By submitting your resume for this position, you authorize Valiant Solutions to share your resume, as well as, personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should Valiant Solutions or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.