Location: Lexington, MA
Company: Mit Lincoln Laboratory
leadership and vision, with respect to operations of the Laboratory vulnerability management process, ensuring adherence to industry standards. These responsibilities include: facilitating design reviews for proposed solutions; providing recommendations on viability; implementation strategies and optimal implementation of solutions; demonstration of expert level knowledge of vulnerability remediation strategies; ensuring changes to security infrastructures are made with optimal security standards and best practices in mind; setting strategic and technical direction following industry standards and security best practices.
Vulnerability backssment Implement, maintain, and document enterprise
vulnerability backssment systems and business processes Create procedures and customized scan configurations appropriate for the desired performance and accuracy Perform scheduled scans of Laboratory Do D classified and unclassified networks with minimal impact to users Provide custom vulnerability reporting for SSD, ISD, and Group Administrators as required.
Review and analyze vulnerability results and monitor remediation efforts in coordination with ISD Management and Systems Administrators Conduct all types of Web applications security testing, including those indicated in the OWASP testing guide General Security Projects Perform Security Reviews to backss security best practices are
adopted for Laboratory deployment projects Assist in evaluating potential security tools, devices, or methods Develop project plans, architecture diagrams, requirement documentation, test plans, change requests, and communication to users Security Infrastructure Operations Responsible for day-to-day support and maintenance of vulnerability backssment systems (e.
g. Vulnerability backssment Scanners & Management System, ACAS and Antivirus/malware scanning systems) Duties include but are not limited to system troubleshooting, vendor coordination, budgeting, capacity planning, OS patching and updating backss and report on operational readiness of enterprise systems through vulnerability scanning, configuration management tools and log analysis (e.
g. Nessus, Tufin and Splunk) Monitor performance metrics and log data for continuous improvement and tuning to match current threats Maintain and update documentation, including standard operating procedures Assist other team members by acting as secondary support role of various security systems Communication & Collaboration Document and track actions to ensure accurate timeline of events is available Coordinate efforts among analyst to enhance mitigation efforts and avoid duplication of efforts Coordinate with Security Services Department on threat impact, nature and potential scope Develop and publish detailed Vulnerability backssment reports as required Threat backssment Assist the Threat backssment team with determination of threat level and action to be performed on systems of interest, e.
g. through vulnerability scanning or configuration management reporting Identify ways to mitigate future risk to the Laboratory Recommend escalation of systems of interest for policy violations and risk to the threat backssment team This position is under general supervision of the Cyber Security Sector Manager This position does not have direct financial responsibility.
However, technical expertise may be required for assisting with product selection. This position will maintain frequent contact with internal department and/or Laboratory user community as well as external vendors to maintain communications related to project execution. Requirements: Knowledge and Skills Required Strong working knowledge of various enterprise network and standalone security systems and technologies - including vulnerability backssment to include ACAS, configuration management and auditing, intrusion protection, firewalls, anti-virus, laptop encryption, and digital forensics 15+ years’ experience in the information technology field 8+ years’ experience specifically in the information security field Proven operational support experience with design and management of vulnerability backssment environments including Tenable Nessus and Security Center Use of advanced options of common discovery and backssment tools such as Nmap, Open SSL and Netcat Configuration auditing and/or monitoring using Nessus and Tufin and/or other configuration management tools Use of various network security systems to assist in the investigation of security anomalies and incidents Knowledge of penetration testing and vulnerability backssment strategies IAT Level II Do D Approved Baseline Certification Ability to obtain and maintain a government security clearance Preferred Bachelor’s Degree in Computer Science, Information Technologies, Engineering or equivalent experience GSEC, GCIH, CISSP or equivalent certification Proven ability to script in Perl or Python Knowledge of Department of Defense and FISMA requirements is preferred Experience with Do D ACAS and/or HBSS systems is preferred Working knowledge of NIST security controls ITIL v3/v4 Foundation experience and/or certification Occasional off-hour/on-call support is necessary.
A certain degree of flexibility of schedule is required as some work (planned/unplanned) must be done outside of major production hours during pre-scheduled maintenance windows. Additional Information This position requires an individual with excellent communication (both oral and writing) and organizational skills. The individual must be able to work in a fast-paced environment at times with minimal supervision and execute project and administrative tasks with a high degree of quality, while following existing processes, and establishing new operational procedures and best practices where necessary.
Additionally, the position requires the ability to work with members of other teams and staff to all necessary department and organizational goals. #CJ At MIT Lincoln Laboratory, our exceptional career opportunities include many outstanding benefits to help you stay healthy, feel supported, and enjoy a fulfilling work-life balance. Benefits offered to employees include: Comprehensive health, dental, and vision plans MIT-funded pension Matching 401K Paid leave (including vacation, sick, parental, military, etc.
) Tuition reimbursement and continuing education programs Mentorship programs A range of work-life balance options. and much more! Please visit our Benefits page for more information. As an employee of MIT, you can also take advantage of other voluntary benefits, discounts and perks. Selected candidate will be subject to a pre-employment background investigation and must be able to obtain and maintain a Secret level Do D security clearance. MIT Lincoln Laboratory is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, interaction, interactionual orientation, gender identity, national origin, age, veteran status, disability status, or genetic information; U.
S. citizenship is required. Requisition ID: 40535
Management & Executive Jobs refer to positions at the higher levels of an organization's hierarchy, involving significant responsibility over strategic planning, decision-making, and leadership. Executives set visions, goals, policies, and they often participate in high-level negotiations. Managers oversee the implementation of these directives, leading teams, managing resources, and ensuring operational efficiency. These roles demand strong leadership, communication, and analytical skills, as well as extensive experience in their respective fields. Typical titles include CEOs, CFOs, directors, and various department heads, each with a critical influence on the company's success and direction.
Management & Executive Jobs refer to positions within an organization that involve overseeing operations and making strategic decisions to guide the company towards its objectives. These roles are characterized by leadership responsibilities, high-level planning, and typically require extensive experience. Executives set the vision and goals, while managers ensure that daily activities align with these directives. Such positions often demand strong communication and interpersonal skills, as well as the ability to solve complex problems and adapt to changing business environments.
Management & Executive Jobs encompass a range of high-level positions within organizations, typically involving the responsibility for strategic planning, decision-making, and leading teams or entire departments. Individuals in these roles are expected to possess strong leadership skills, the ability to think critically and strategically, as well as excellent communication abilities. Executives often have a significant influence on company culture, operations, and financial success. These roles include titles such as CEO, CFO, COO, Managing Director, as well as various managerial positions across different departments such as sales, marketing, human resources, and more.
Management & Executive Jobs refer to high-level positions within an organization that involve overseeing operations, making strategic decisions, and leading teams towards achieving business objectives. Individuals in these roles typically have significant experience and expertise in their respective fields. They are responsible for setting goals, developing policies, and ensuring the effective management of resources. Executive roles often include titles such as CEO, CFO, COO, and department heads, among others. Characteristically, these jobs demand strong leadership skills, excellent communication abilities, and a capacity to think critically and solve complex problems.
