Security Engineer IV
Herndon, VA

Job Description

Position Description

The Tenable Subject Matter Expert (SME) will be responsible for performing the following activities.

* Implement/manage Tenable.sc, Nessus Security Manager, and Nessus agents
* Responsible for defining scan policies and audit policies
* Responsible for adding scan credentials
* Responsible for Scheduling scans
* Responsible for Generating Scan Reports
* Responsible for the Analysis and validation of the scan results
* Responsible for Developing/Configuring and Monitoring the dashboards
* Develop Nessus compliance audit files and associated conversion from DISA STIG or CIS
* Maintain, update, patch, and enhance Tenable.sc system to ensure optimal operational state
* Perform data clean up and configuration of scan jobs, asset groups, dashboards, data repositories, and reports
* Run ad-hoc scans, queries, and reports
* Perform vulnerability, configuration, and compliance assessments
* Identify and fix problems with scans (such as incorrect credentials, firewall blocks, & failed scans)
* Validate and maintain asset lists for scans
* Develop custom reports
* Develop new or updated compliance audit files
* Compile scan data for IT priority remediation and executive status presentation
* Creating and maintaining documentation of IT security procedures, processes, configurations, and diagrams
* Identify security vulnerabilities and prioritize remediation
* Verify that our systems, networks, and infrastructure meet baseline security standards as defined by the industry;
* Support security policies and procedures by recommending steps for the IT team to take, to achieve a more secure environment
* Conducting research to keep abreast of latest security issues to anticipate incidents and reduce their likelihood
* Performing other duties as assigned

Qualifications

* 5 - 8 years' experience within an Information Security discipline
* 3 - 5 years' experience managing Tenable Nessus infrastructure
* Experience using Splunk is a plus
* Certified Information Systems Security Professional (CISSP) or other Information Security certifications is a plus

Company OverviewSerco Inc. (Serco) is the Americas division of Serco Group, plc. Serco serves every branch of the U.S. Military, numerous U.S. Federal Civilian Agencies, the Intelligence Community, the Government of Canada, State and Local Governments, and Commercial Clients. We help our clients deliver vital services more efficiently, while increasing the satisfaction of their end customers. Headquartered in Herndon, Virginia, Serco has approximately 6,000 employees with an annual revenue of $1 billion and is part of a $4 billion global business that helps transform government and public services around the world. At Serco, our employees are our most valuable asset, and our success directly relates to our employees. At Serco, we listen, respect and support our employees and through continuous training, development and information-sharing, we advance talent internally, enhancing career growth and progression which enables not only our employees to excel but enables our customers to excel as well. It is not just a job at Serco; at Serco, we offer career opportunities. We invite you to become part of our dynamic team. Serco''s people share a passion for delivering ethical service, innovation, and a commitment to results. We trust our people to deliver. Serco is an equal opportunity employer committed to diversifying its workforce (Race/ Color/ Sex/ Sexual Orientation/ Gender Identity/ Religion/ National Origin/ Disability/ Vets).