Sr. Vulnerability Specialist required for a Long term project at Ney York City, NY

We are trying to

• Understand the technical details of vulnerabilities, explain details to technical and nontechnical audience, and describe how it impacts Client.
• Recommend compensating and mitigating controls and triage zero day and known vulnerabilities to contain the impact of exploitation of those vulnerabilities.
• Keep up to date with current threat landscape, emerging attack vectors, and vulnerability trends.
• Consolidate vulnerabilities from multiple sources, e.g., vendors, the Cybersecurity and Infrastructure Security Agency (CISA), security researchers, security tools, etc.
• Prioritize the vulnerabilities and identify the impacted systems.
• Understand the Client’s technologies, architecture, team structures, and culture.
• Support Client’s with the coordination of vulnerability remediation activities.
• Provide vulnerability tracking and management.
• Perform validation testing of patched systems and applications.
• Provide guidance on threat and vulnerability management best practices and share knowledge with Client’s staff.
• Interface with and respond to NYC3 regarding vulnerability and threat research, remediation efforts, and reporting.
• Perform due diligence on vulnerability remediation requests from NYC3, e.g., if the vulnerability impacts Client’s systems, severity changes, active exploitation etc.
• Utilize solutions/tools used at Client, such as, but not limited to Armis, Splunk, Secureworks, Tenable, and Rapid 7 to discover vulnerabilities (including scans, setup alerts, etc.), and track and validate remediation.
• Track the status of all vulnerability remediation activities in the Client’s ServiceNow and SharePoint systems.
• Develop and share skills necessary to create correlation searches in Splunk, in accordance with Client’s priorities.
• Work closely with Client’s unit staff to develop correlation searches to match the severity and granularity needed to be effective.
• Provide assistance and expertise for reviewing and interpreting the results of the regular internal and external vulnerability scans.
• Provide assistance to improve the monitoring and analyzing of data from security systems (such as intrusion detection system [IDS/IPS] logs) to determine if there are any patterns indicating a compromised system(s).
• Facilitate the development of working relationships with NYC3 and other NYC intel and cybersecurity organizations.

• At least 4 years of experience in Cybersecurity, including vulnerability assessments, penetration testing, security assessments, strategy and program development, network architecture designs, or monitoring solutions;
• Ability to analyze cybersecurity documentation, including security policies, plans, and procedures;
• Experience with cybersecurity standards and best practices and how to integrate them;
• Strong background with next generation firewall products, intrusion detection systems, DMZ, IPSec, DNS, SMTP, HTTP proxies, etc;
• Knowledge of security best practices across multiple platforms, such as Microsoft Windows, VMWare, Cisco IOS, and Mobile OS Android/Apple IOS;
• Knowledge of public-key cryptography, understanding of encoding, encryption, and hashing techniques;
• Knowledge of security best practices: NIST, CIS, Cisco, Juniper, Palo Alto, Fortinet, Checkpoint, Microsoft, Unix/Linux, etc;
• Experience with evaluating security vulnerabilities, developing mitigation strategies, and implementing remediation;
• Work with vendors, carriers and other technical groups to implement new designs and optimize the network.
• Strong understanding of network protocols (EIGRP, OSPF, BGP, etc)
• Understanding of campus and datacenter switching using Cisco and Arista.
• Ability to implement VxRail into a network environment
• Knowledge of deploying and maintaining Next Generation Firewalls including Cisco, Palo alto, Fortinet, Forcepoint, etc.
• Capable of deploying and supporting Cisco DNA
• Understanding of software defined networking technologies for datacenters such as Cisco ACI or Arista Cloudvision
• Strong background in F5 load balancing
• Ability to migrate services between datacenters
• Understanding of the various VPN technologies
• Familiarity with Infoblox to maintain public facing DNS services as well as IPAM
• Design and maintenance of wireless environment including controllers and APs.
• Knowledge of IPS/IDS design as standalone hardware or as a feature within firewalls
• Strong knowledge of network management tools to facilitate troubleshooting, i.e., Wireshark, Netbrain, Extrahop, etc.
• Ability to implement, manage and administer Cisco ISE