IT Security Specialist / Vulnerability Manager

Position Description
ERT is seeking an IT Security Specialist / Vulnerability Manager to support NOAA's Office of Satellite and Product Operations (OSPO) environmental-monitoring satellite missions. Will be responsible for managing vulnerability remediation program monitoring, reporting and auditing, and KEV engagement within the NOAA environment. Specific duties include:

• Provide weekly assessments and status reporting of vulnerability program performance. This includes but is not limited to: Reporting emergent vulnerabilities pertinent to contract information systems, documentation and reporting on critical vulnerabilities detected within contract information systems – especially CISA KEVs, provide status reports on period patching activities, coordinate, document and report on special vulnerability remediation activities across contract information systems.
• Conduct weekly meetings of the OSPO PVG and Patching TIM. Create and foster a forum of information sharing, coordination and reporting with the aim of improving the organizational vulnerability management process by identifying weak processes and other challenges while encouraging collaboration and communication to achieve both security and operations goals. 
• Develop and enforce standards to ensure that all identified vulnerabilities are remediated in a timely and effective manner in accordance with DHS, DOC, NOAA, NESDIS, and OSPO IT security requirements. 
• Evaluate periodic (quarterly) enterprise vulnerability remediation to facilitate schedule adherence.
• Innovate new monitoring and reporting mechanisms to achieve organizational goals.
• Provide IT security support to operations and development teams. 

Requirements

• 8+ years of public sector IT security, governance and compliance experience with excellent written and verbal communication skills.
• Knowledge of and experience with organizational IT security tools to include CSAM, Tenable SC, Nessus, etc.
• Prior experience serving in IT security roles in NOAA and OSPO 
• Must be a US Citizen or Permanent Resident and be able to pass a background investigation to obtain a security badge to enter the applicable government facility.

Desired

• CISSP preferred
• CISA and CGRC also highly desired

Education
BS in Information Technology, Computer Science, related discipline, or equivalent.

Work Location
This position is located on-site at the NOAA Satellite Operations Facility (NSOF) in Suitland, MD. Some telework permitted.

Salary
The salary range for this role is $66,000 - $242,000/year. This range is a good faith estimate based on similar roles across the organization. ERT considers several factors when extending an offer of employment, including the location, scope, and associated responsibilities of the specific position, as well as a candidate’s work experience, education/training, and key skills.

Benefits
All full-time employees are eligible to participate in our flexible benefits package, which includes:

• Medical, Rx, Dental, and Vision Insurance
• 401(k) retirement plan with company-matching
• 11 Paid Federal Government Holidays
• Paid Time Off (PTO)
• Basic Life & Supplemental Life
• Health Savings Account, Flexible Spending and Dependent Care Flexible Spending Accounts
• Short-Term & Long-Term Disability
• Employee assistance program (EAP)
• Tuition Reimbursement, Personal Development & Learning Opportunities
• Skills Development & Certifications
• Professional Membership Reimbursement
• Employee Referral Program
• Competitive compensation plan
• Discretionary variable incentive bonuses based on factors such as individual performance, business unit performance, and/or the company’s performance
• Publication and Conference Presentation Awards with bonuses

ERT is a VEVRAA Federal Contractor and Equal Opportunity employer - All qualified applicants will be considered for employment without regard to race, color, religion, sex, national origin, disability, or protected Veteran status.