DCO Analyst (Vulnerability Scanning)

About the OrganizationNow is a great time to join Redhorse Corporation. Redhorse specializes in developing and implementing creative strategies and solutions with private, state, and federal customers in the areas of cultural and environmental resources services, climate and energy change, information technology, and intelligence services. We are hiring creative, motivated, and talented people with a passion for doing what's right, what's smart, and what works.
About the RoleRedhorse is transforming how the government uses data and technology. This DCO Analyst (Vulnerability Scanning) position is critical to securing our clients' sensitive information within the Army and Intelligence Community (IC). You will play a vital role in protecting critical systems and ensuring compliance with stringent security regulations. Your expertise in vulnerability scanning will directly impact the security posture of our clients, contributing to the success of their missions and Redhorse's commitment to excellence. This position is located in Wiesbaden, Germany, and will support the GISA program.

Key Responsibilities

• Perform regular vulnerability assessments and scanning of network, systems, and applications (on-premise and cloud) using Tenable Nessus to identify security weaknesses and potential threats.
• Analyze vulnerability scan results to determine the risk associated with identified vulnerabilities.
• Collaborate with IT and security teams to develop mitigation/remediation plans (patch management, configuration changes, etc.).
• Manage and maintain vulnerability scanning tools and software, ensuring they are up-to-date and effective.
• Participate in/support incident response activities, providing vulnerability-related expertise.
• Create detailed reports on vulnerability scan results, risk assessments, and mitigation progress for stakeholders and regulatory bodies.
• Ensure compliance with industry standards and regulations (DOD, Army, IC task orders, bulletins, NSMs, and the DISA ACAS Best Practice Guide).
• Educate and train ISSO and ISSM personnel across the Army Intelligence Enterprise (AIE) on vulnerability scanning and security best practices.
• Continuously monitor systems and networks for emerging threats and vulnerabilities, adapting scanning and assessment processes as needed to maintain compliance.
• Stay current with cybersecurity threats and technologies, contributing to improved vulnerability scanning methodologies and tools.

Required Experience/Clearance

• Active TS security clearance and eligibility for SCI and NATO read-on prior to starting work.
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Meet DoD 8140/8570.01-m requirements for privileged user access on a TS/SCI information system prior to starting work.
• Minimum 5 years of experience in vulnerability scanning and security analysis.
• Proficiency in vulnerability scanning tools such as Tenable Nessus.
• Strong understanding of cybersecurity principles, threat landscape, and CVEs.
• Ability to analyze vulnerability scan results and make informed risk and remediation decisions.
• Strong written and verbal communication skills for reporting and collaboration.
• Ability to identify and resolve security issues efficiently.
• Thoroughness in scanning, analyzing, and documenting vulnerabilities and their impact.
• Collaboration and teamwork skills to work with IT and security teams.

Desired Experience

• Experience with Splunk or other SIEM platforms.
• Experience with Big Data Platform and analytics tools.
• Experience with network analyzers.
• Industry certifications such as CISSP, CISM, or CEH.

Equal Opportunity Employer/Veterans/Disabled  Accommodations:If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to access job openings or apply for a job on this site as a result of your disability. You can request reasonable accommodations by contacting Talent Acquisition at Talent-Acquisition@redhorsecorp.com Redhorse Corporation shall, in its discretion, modify or adjust the position to meet Redhorse’s changing needs.This job description is not a contract and may be adjusted as deemed appropriate in Redhorse’s sole discretion.