Vulnerability Assessment Manager in New York, NY at Booz Allen Hamilton Inc.

Date Posted: 11/20/2018

Job Snapshot

  • Employee Type:
  • Location:
    New York, NY
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:

Job Description

Job Number: R0022561

Vulnerability Assessment Manager

Key Role:

Assess clients’ vulnerability management programs and develop recommendations to achieve Cybersecurity best practices. Lead project delivery teams and work with various decision makers across all organizational levels. Provide subject matter expertise during proposals, pre-sales calls, and project planning. Provide advice and direction to program managers and other functional area SMEs representing vulnerability management and security engineering. Develop Booz Allen’s vulnerability management capability and service offering. Act as a leader on large programs and projects that affect the organizations long-term goals and objectives. 

Basic Qualifications:

-8+ years of experience with Cybersecurity vulnerability assessments and related processes

-5+ years of experience with planning and executing comprehensive vulnerability scanning and assessments, including identifying applicable security controls, analyzing assessment procedures, and identifying and using required tools

-3+ years of experience with leading Cybersecurity projects and teams

-Experience with assessing organizational risks and recommending mitigation strategies to senior leadership

-Experience with using or configuring at least two of the following vulnerability assessment tools: Tenable/Nessus, Retina, QualysGuard, Nexpose, OpenVAS, HPE Fortify, Veracode, Tripwire, Guardium, RedSeal, or SkyBox

-Knowledge of Cybersecurity principles, including Threat Intelligence, Penetration Testing, Red Team, and Incident Response within the context of supporting vulnerability management functions

-Ability to lead projects and work streams in a fast-paced environment and analyze systems and networks for a clear written determination of compliance or residual risk and potential vulnerability mitigation strategies

-Ability to travel up to 75% of the time

-BA or BS degree

-CISSP, CISM, SABSA, or GIAC Certification

Additional Qualifications:

-Experience with working in a commercial consulting or professional services environment

-Experience with ethical hacking, including information security, application vulnerability testing, code-level security auditing, and secure code reviews

-Experience in change management techniques associated with new technology implementation

-Experience with developing, managing, and securing Microsoft Windows, UNIX, or Linux platforms

-Experience with securing virtual, Cloud, OT, IoT, and common enterprise technologies

-Experience with scripting or programming languages, including Bash scripting, Perl, and Python

-Knowledge of secure development best practices for OWASP

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.