Job Title: Qualys Vulnerability Management Analyst
Location: Rockville, Maryland
Type: Contract
Compensation: $45 - $55 hourly
Contractor Work Model: Hybrid
Overview:
The organization is expanding its Vulnerability Management program and is seeking a highly qualified Vulnerability Management Analyst with strong hands?on experience operating Qualys tools without the need for training. This role operates in a mission?critical security environment and requires exceptional analytical ability, technical expertise, and excellent written and verbal communication skills.
Key Responsibilities:
Configure, operate, and maintain enterprise vulnerability assessment tools, with primary responsibility for Qualys Vulnerability Management, QualysGuard, and Qualys Policy Compliance.
Plan, execute, and manage vulnerability scans, assessments, reports, and dashboards.
Investigate vulnerabilities, validate findings, eliminate false positives, and identify trends.
Produce clear, concise, and well?structured written documentation, reports, executive summaries, and recommendations.
Communicate effectively with technical teams and leadership, explaining complex issues in a clear, business?friendly manner.
Track and support remediation efforts with IT, engineering, and development teams.
Produce metrics and reporting related to threat, vulnerability, and patch management.
Deliver security guidance and training to technical and business staff.
Recommend updates to security policies, standards, and procedures.
Maintain documentation of scanning procedures, schedules, asset inventories, and program updates.
Serve as the primary point of contact for all Vulnerability Management Program communications.
Required Subject Matter Expertise (5+ Years):
Vulnerability Scanning & Assessments: Hands?on experience planning and conducting comprehensive enterprise vulnerability assessments.
Qualys Platform Expertise: Proven ability to configure, administer, and troubleshoot enterprise Qualys tools with no training required.
IT Service Management Tools: Experience with Remedyforce, Zendesk, or comparable enterprise ITSM systems.
Communication Skills: Exceptional written and verbal communication abilities, with demonstrated experience presenting findings to technical teams and executive leadership.
Required Working Knowledge:
At least five years of experience securing operating systems, platforms, applications, networks, and protocols.
Experience with Linux/UNIX and Windows environments.
Familiarity with commonly deployed applications such as Chrome, Oracle Java, and Adobe Acrobat.
Preferred Certifications (Qualys):
Candidates with any of the following Qualys certifications are strongly preferred:
Qualys Vulnerability Management Detection & Response (VMDR) Certification
Qualys Vulnerability Management (VM) Specialist Certification
Qualys Policy Compliance (PC) Specialist Certification
Qualys Certified SME - Vulnerability Management
Qualys Technical Specialist (QTS) certifications in applicable modules
Other relevant cybersecurity certifications (e.g., Security+, CYSA+, CEH, CISSP) are also a plus.
Deliverables:
Qualys Administration: Complete management of assets, appliances, scans, dashboards, and reporting.
Security Metrics: Regular vulnerability, threat, and patch management reporting.
Performance Reporting: Weekly summaries of completed work, planned activities, risks, and discussion items.
Vulnerability Mitigation Recommendations: Documented remediation and compensating control recommendations.
Helpdesk Ticket Management: Creation and management of all vulnerability?related tickets through closure.
Documentation: Updated procedures and inventory documentation for the vulnerability management infrastructure.
#M1
#LI-CB3
System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
Ref: #851-Rockville-S1
System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
Location: Rockville, Maryland
Type: Contract
Compensation: $45 - $55 hourly
Contractor Work Model: Hybrid
Overview:
The organization is expanding its Vulnerability Management program and is seeking a highly qualified Vulnerability Management Analyst with strong hands?on experience operating Qualys tools without the need for training. This role operates in a mission?critical security environment and requires exceptional analytical ability, technical expertise, and excellent written and verbal communication skills.
Key Responsibilities:
Configure, operate, and maintain enterprise vulnerability assessment tools, with primary responsibility for Qualys Vulnerability Management, QualysGuard, and Qualys Policy Compliance.
Plan, execute, and manage vulnerability scans, assessments, reports, and dashboards.
Investigate vulnerabilities, validate findings, eliminate false positives, and identify trends.
Produce clear, concise, and well?structured written documentation, reports, executive summaries, and recommendations.
Communicate effectively with technical teams and leadership, explaining complex issues in a clear, business?friendly manner.
Track and support remediation efforts with IT, engineering, and development teams.
Produce metrics and reporting related to threat, vulnerability, and patch management.
Deliver security guidance and training to technical and business staff.
Recommend updates to security policies, standards, and procedures.
Maintain documentation of scanning procedures, schedules, asset inventories, and program updates.
Serve as the primary point of contact for all Vulnerability Management Program communications.
Required Subject Matter Expertise (5+ Years):
Vulnerability Scanning & Assessments: Hands?on experience planning and conducting comprehensive enterprise vulnerability assessments.
Qualys Platform Expertise: Proven ability to configure, administer, and troubleshoot enterprise Qualys tools with no training required.
IT Service Management Tools: Experience with Remedyforce, Zendesk, or comparable enterprise ITSM systems.
Communication Skills: Exceptional written and verbal communication abilities, with demonstrated experience presenting findings to technical teams and executive leadership.
Required Working Knowledge:
At least five years of experience securing operating systems, platforms, applications, networks, and protocols.
Experience with Linux/UNIX and Windows environments.
Familiarity with commonly deployed applications such as Chrome, Oracle Java, and Adobe Acrobat.
Preferred Certifications (Qualys):
Candidates with any of the following Qualys certifications are strongly preferred:
Qualys Vulnerability Management Detection & Response (VMDR) Certification
Qualys Vulnerability Management (VM) Specialist Certification
Qualys Policy Compliance (PC) Specialist Certification
Qualys Certified SME - Vulnerability Management
Qualys Technical Specialist (QTS) certifications in applicable modules
Other relevant cybersecurity certifications (e.g., Security+, CYSA+, CEH, CISSP) are also a plus.
Deliverables:
Qualys Administration: Complete management of assets, appliances, scans, dashboards, and reporting.
Security Metrics: Regular vulnerability, threat, and patch management reporting.
Performance Reporting: Weekly summaries of completed work, planned activities, risks, and discussion items.
Vulnerability Mitigation Recommendations: Documented remediation and compensating control recommendations.
Helpdesk Ticket Management: Creation and management of all vulnerability?related tickets through closure.
Documentation: Updated procedures and inventory documentation for the vulnerability management infrastructure.
#M1
#LI-CB3
System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
Ref: #851-Rockville-S1
System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.