SteelGate is looking for a Vulnerability Engineer to support vulnerability remediation efforts for the DMDC. Candidates should have a strong in-depth knowledge of the Windows OS (Workstation and server) as well as a foundational knowledge of LINUX/UNIX OS, networking, databases, and other IT Technologies required. Working knowledge of DevSecOps functionality a plus.
Requirements:
· 5+ years of operational experience in vulnerability management or security engineering with a working knowledge of OS hardening/compliance/DISA STIGs.
· Position requires 8570 Certification (e.g. Security +, CISSP).
Desired Skills:
• Working knowledge of ACAS. Knowledge of PowerShell. Experience with MECM, Tanium, and MDE a plus
• Understanding of DISA STIGs and Information Assurance Vulnerability Management (IAVM) Program
• Working knowledge of Red Hat Advanced Cluster Security for Kubernetes (StackRox) and Splunk strongly desired. Strong critical thinking, communication, and organizational skills
• Collaborates with technical and compliance teams across the organization.
• Capable of performing trend and analysis of vulnerability scan data and preparation of weekly metrics for presentation to leadership
• Experience in Information Technology/Vulnerability Management/Cybersecurity
• Demonstrate deep technical knowledge in the management and configuration of operating systems, networks, and software including knowledge of OS authentication mechanisms, permissions, and a solid understanding of networking
• In-depth knowledge of network protocols, operating systems, and common vulnerabilities.
• Familiarity with security frameworks and standards (e.g., NIST, ISO 27001)
• Demonstrate broad security experience, which must include vulnerabilities, risks, and security mechanisms that are common in today's government systems

Experience:
• Vulnerability management: 5 years (Required)
• Security engineering: 5 years (Required)
• DISA STIG: 5 years (Required)
• ACAS: 5 years (Preferred)
• PowerShell: 2 years (Preferred)
• StackRox: 2 years (Preferred)
• Kubernetes: 2 years (Preferred)
• Splunk: 2 years (Preferred)

License/Certification:
• CompTIA Security+ (Preferred)
Security clearance:
• Secret (Required)

Ability to Commute:
• Alexandria, VA 22311 (Required)
Work Location: Hybrid remote in Alexandria, VA 22311

Job Type: Full-time
Salary: $ 110,000-$120,000

Benefits:
• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance
Schedule:
• 8 hour shift
• Monday to Friday
• On call

STEELGATE LLC is a Service-Disabled, Veteran-Owned Small Business (SDVOSB) that prides itself in hiring top-level Subject Matter Experts (SME’s) proven to exceed deliverable expectations. STEELGATE LLC is focused on solving the hard problems facing our government and commercial clients. Our success lies in blending together relevant domain/functional knowledge with deep expertise in Information Technology, Cybersecurity, Defensive Cyber Operations, cloud-based DevSecOps, Data Analytics & AI, Acquisition and Acquisition Management, and more. STEELGATE LLC has a positive, inclusive workplace environment where all team members and partners work towards mutual success. We have established a reliable reach-back program whereas all SMEs are available to support, advise and directly complete mission deliverables when necessary. STEELGATE LLC has a worldwide reputation as a valued and trustworthy partner. Our can-do attitude and willingness to support any mission requirement sets us apart from other small business organizations. Find out more about STEELGATE LLC @ www.steelgatellc.com.

We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law.