Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates and reports any suspected and confirmed security violations.
The CBP SOC Program has a critical need for a Tier 2 Vulnerability Assessor (VAT) to join our team.
The VAT Team will have about 3 members. The Tier 2 VAT will perform research on current threats and vulnerabilities. Will be responsible for authoring security advisories. Manage enterprise vulnerability compliance and will conduct vulnerability assessments of IT systems.
Bachelors' degree from an accredited college in a related discipline, or equivalent experience/combined education, with 8 to 12 years of professional experience; or 6 to 10 years of professional experience with a Masters' degree. Must have a Secret Clearance with the ability to get TS/SCI. In addition to specific security clearance requirements all Department of Homeland Security CBP SOC employees are required to have or be able to favorably pass a 5 year (BI) Background Investigation.
Minimum of 7 years of professional experience in incident detection and response, malware analysis, or cyber forensics
In addition, minimum of five (5) years of specialized experience in one or more of the following areas:
- Vulnerability Assessment
- Intrusion Prevention and Detection
- Policy Enforcement
- Access Control and Authorization
- Policy Enforcement
- Application Security
- Protocol Analysis
- Firewall Management
- Incident Response
- Advanced Threat Protection
Extensive experience working with various security methodologies and processes, advanced knowledge of TCP/IP protocols, experience configuring and implementing various technical security solutions, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices.
Should have one or more of the following certifications:
CEH, LPT, ECSA, ENSA, CNDA, ECSS, ECSP, ECES, CISSP, CCSP, SEI, OSEE, ISWP, OSCE, OSCP, CCNA Security, CCNP Security, GCIA, GREM, GPPA, GISF, GXPN, GWEB, GNFA, GMON,
Experience in cyber government, and/or federal law enforcement. Experience with Cyber Kill Chain. Experience in cyber government, and/or federal law enforcement.