Skip to content


Advertise your job!

Santa Ana, California - USD Full Time Posted: Friday, 9 November 2018
Sr. Vulnerability Assessment Analyst (Job Number:439719)



This position will be responsible for Vulnerability Assessment for the 24/7 Security Operations Center (SOC). The candidate must have a bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity or related field and at least 5 years' experience in vulnerability assessment and penetration testing. Job Specific Responsibilities:

. Develop moderately complex security designs and test plans using existing technology.

. Perform and document root cause analysis for security incidents.

. Perform e-mail malware analysis

. Work closely with the SAIC CISO to identify and recommend process and system improvements to the security program.

. Create relevant documentation and recommendations for changes to the current security architecture.

. Drive the capabilities and execution to effectively optimize and improve enterprise security.

. Demonstrate expert level knowledge of security services and implementations.

. Investigate, positively identify, and document anomalous events and incidents that are escalated by Tier 1 engineers.

. Document and escalate appropriate events and incidents to Tier 3 engineer.

. Examine cyber adversary techniques in order to develop defensive methodologies.

. Conduct risk analysis and convert it into actionable monitoring recommendations to be conducted by the SOC.

. Recommend remediation and mitigation strategies and implementations based on the results of vulnerability assessments, to ensure effective achievement of the organizational objectives.

. Provide support for security incidents throughout the incident lifecycle as needed and make recommendations to ensure enterprise infrastructure is protected.

. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.

. Work with the SAIC CISO to develop a metrics program to report on overall SOC performance and effectiveness.


. Wireshark

. LogRhythm

. ServiceNow

. Keylight

. Nessus

. Microsoft Exchange and Microsoft Exchange Online Protection

. Sourcefire

. Blue Coat

. Zscaler

. McAfee Data Loss Prevention



. Bachelors and five (5) years or more experience; Masters and three (3) years or more experience; PhD and 0 years related experience.


. Must be able to pass a California Department of Justice (DoJ) LiveScan background investigation and a detailed lifestyle law enforcement background interview.


. Bachelor degree in Computer Science, Engineering, Information Technology, Cybersecurity or related field and a minimum of five years of experience in vulnerability assessment and penetration testing.

. Demonstrated Experience with Cyber Security E-mail and Incident Response including expert experience in at least two of the following areas:

. (a) Vulnerability Assessment;

. (b) Intrusion Prevention and Detection;

. (c) Access Control and Authorization;

. (d) Policy Enforcement;

. (e) Application Security;

. (f) Protocol Analysis;

. (g) Firewall Management;

. (h) Incident Response;

. (i) Encryption;

. (j) Web-filtering;

. (k) Advanced Threat Protection


. Security+ and/or CySA, plus CCNA Certification,

. Experience with Nessus vulnerability scanning

. Experience with vulnerability assessment tools (Nessus).

. Experience writing moderately complex scripts.

. Understanding of networking concepts and technologies including TCP/IP, Routing, Switching, NAT, OSI Model, etc.

. Ability to manage multiple projects and multiple deadlines in an organized fashion.

. Understanding of advanced data analysis and management concepts.

. Technical writing abilities to author technical and management risk reports.


. Certified Information Systems Security Professional (CISSP)


. SANS/GIAC certifications

. Cisco WLAN certification

. Experience in Information Assurance Policy and Guidelines

. NIST Special Publication 800-53

. NIST Cybersecurity Framework

. ITIL? Foundation Level or higher Certification

SAIC Overview:SAIC is a premier technology integrator providing full life cycle services and solutions in the technical, engineering, intelligence, and enterprise information technology markets. SAIC is Redefining Ingenuity through its deep customer and domain knowledge to enable the delivery of systems engineering and integration offerings for large, complex projects. SAIC's approximately 15,000 employees are driven by integrity and mission focus to serve customers in the U.S. federal government. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $4.5 billion. For more information, visit For information on the benefits SAIC offers, see My SAIC Benefits. EOE AA M/F/Vet/Disability

Job Posting: Aug 31, 2018, 8:54:04 PM

Primary Location: United States-CA-SANTA ANA

Clearance Level Must Currently Possess: None

Clearance Level Must Be Able to Obtain: Secret

Potential for Teleworking: No

Travel: None

Shift: Day Job

Schedule: Full-time


Santa Ana, California, United States of America
11/9/2018 1:37:13 AM

We strongly recommend that you should never provide your bank account details to an advertiser during the job application process. Should you receive a request of this nature please contact support giving the advertiser's name and job reference.