Cyber Defense Incident Responder - SME (EVAP Team Lead)

Responsibilities & Qualifications

This role requires a blend of strategic thinking, technical expertise, and effective team management to ensure the organization maintains a robust and proactive approach to vulnerability management in the government customer’s dynamic and fast-paced cybersecurity environment.

RESPONSIBILITIES

• Technical Leadership and Expertise
  • Serve as the primary technical expert for enterprise vulnerability assessment tools and practices, overseeing the architecture, engineering, and operation of the EVAP scanning infrastructure.
  • Support hands-on configuration and optimization of vulnerability scanning solutions to ensure effectiveness and accuracy.
  • Stay current with the latest vulnerability assessment tools, technologies, and threat landscapes to continuously refine scanning methodologies.
• Operational Oversight
  • Direct day-to-day operations of the EVAP team to ensure efficient and timely execution of vulnerability assessments.
  • Provide hands-on guidance in conducting complex scans, troubleshooting tool issues, and analyzing results.
  • Ensure scanning activities are aligned with organizational needs for maximum coverage and effectiveness.
• Team Management and Development
  • Support, mentor, and support the team of Security and Vulnerability Assessment SMEs, fostering a collaborative environment and ensuring high performance.
  • Coordinate team tasks and manage workload distribution to optimize productivity and meet project deadlines.
  • Tool and Infrastructure Management
  • Maintain and support the government customer’s enterprise vulnerability scanning tools, ensuring they are up to date and effectively utilized.
  • Support the management and enhancement of the enterprise scanning infrastructure to ensure it is resilient and secure.
• Comprehensive Vulnerability Assessments
  • Support technical execution of enterprise-wide vulnerability assessments, focusing on identifying and mitigating security risks across the government customer networks, systems, and infrastructure.
  • Conduct in-depth analysis of vulnerabilities to determine potential impacts and recommend remediation steps.
  • Ensure that assessments cover a variety of technologies, including network devices, databases, operating systems, and applications.
• Collaboration and Cross-Team Coordination
  • Work closely with other government customer cybersecurity teams, such as the Red, Blue, and security operations center (SOC) teams, to share insights and coordinate on remediation efforts.
  • Facilitate the collaboration between the EVAP team and IT system owners and support teams for effective vulnerability mitigation and ensure scan results are appropriately integrated into the GRC tool.
  • Provide technical advice and expertise during incident response efforts, including the government customer’s annual cybersecurity tabletop exercise.
• Training and Policy Implementation
  • Develop and deliver technical training programs for team members and other approved users on the effective use of vulnerability scanning tools.
  • Create and maintain detailed SOPs for tool usage and ensure compliance with established cybersecurity policies.
• Reporting and Communication
  • Support the creation of technical reports and presentations that detail vulnerability findings and provide actionable insights
  • Act as a technical liaison to communicate vulnerabilities, risks, and remediation status to the CISO and senior leadership.
• Continuous Technical Improvement
  • Drive the continuous improvement of the vulnerability management process through the implementation of innovative technical solutions and process enhancements.
  • Lead efforts to address challenges in patching and vulnerability management visibility across the organization.

REQUIRED QUALIFICATIONS

• Active Top Secret Clearance Required
• Experience: At least 5+ years of experience with at least 2 years in a management capacity or equivalent experience
• Certifications preferred include:
  • CISSP
  • CISM
  • CISA
  • SANS GIAC certification (e.g., GPEN or GW APT)
  • OSCP
  • CEH

Overview

We are seeking a Cyber Defense Incident Responder-SME (EVAP Team Lead) to join our team supporting a government customer.

TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. “Technology moving at the speed of thought” embodies these principles – the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.

TekSynap offers our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.

Visit us at www.TekSynap.com. 

Apply now to explore jobs with us!  

By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status.  If at any time you would like to opt out of text messaging, respond "STOP".

Additional Job Information

WORK ENVIRONMENT AND PHYSICAL DEMANDS

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job.  Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. 

• Location: Washington, DC
• Type of environment: Office - 100% on-site required
• Noise level: Medium
• Work schedule: Schedule is day shift Monday – Friday 
• Amount of Travel: Less than 10%

PHYSICAL DEMANDS

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

WORK AUTHORIZATION/SECURITY CLEARANCE

• U.S. Citizen
• Active Top Secret Clearance 

OTHER DUTIES

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

EQUAL EMPLOYMENT OPPORTUNITY

In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, genetic information, or any other characteristic protected by law (referred to as “protected status”). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.