Vulnerability and Application Scanning Lead

Ft Knox, KY

SUMMARY:

Founded in 2001, Indigo IT is an award winning information technology consulting and services company. We are a trusted services provider to government agencies seeking innovative Cloud, Cybersecurity, Knowledge Management, and Enterprise solutions. We know our defense, federal, and civilian customers have critical IT infrastructures that must remain reliable, available, and maximized. Indigo IT is mission focused and committed to maintaining a sense of urgency in anticipating and supporting our customers’ technology goals and objectives. Our unique ability to think beyond today allows our clients to stay ahead of their IT challenges. Recognized on the Inc. 5000 list of America’s fastest growing companies in 2020 & 2021, and named as one of the 2022 Best Places to Work in Virginia, we are always looking to hire top talent in the field - come join us today!

HRC operates under the Cybersecurity standards defined in the Department of Defense (DoD), DoD Risk Management Framework (RMF -2.0), Federal Information Security Modernization Act (FISMA), National Institute of Standards and Technology (NIST), U.S. Cyber Command (USCYBERCOM), Army Cyber Command (ARCYBER), and U.S. Army Network Enterprise Technology Command (NETCOM) directives. These directives require real-time compliance, continuous monitoring, routine inspections, and heightened scrutiny of the cybersecurity posture and associated risks for all HRC systems. This increase in security includes all HRC infrastructure, workstations, servers, applications, network devices, and databases. To combat any threats, an increase to vigilance and awareness is required to detect, prevent, and respond to any perceived incidents and ensure the confidentiality, integrity, and availability (CAI) of data for Soldiers spanning the lifecycle from recruitment through management of Army veterans.

As the Vulnerability and Application Lead for the U.S. Army Human Resources Command (HRC), Staff G6, Cybersecurity Division (CSD), you will perform correlation and scanning of application code (Java, Net, etc.) with government provided tools and other prescribed Cybersecurity tools to analyze risk and assess compliance across all HRC systems, applications, and authorization boundaries. This Key Personnel position provides mitigation and remediation strategies to application developers to address vulnerabilities in code.

ESSENTIAL FUNCTIONS/RESPONSIBILITIES:

• Conduct risk analysis and risk/vulnerability assessments

• Meet all regulatory standards and guidance

• Optimize processes to meet IT security related goals and strategy

• Perform gap analysis

• Perform cloud security services

• Perform continuous monitoring

• Experience with application code-Java, Net others

• Experience leading and working with software/application developers

EDUCATION, EXPERIENCE, & CERTIFICATIONS:

• Security Clearance: TS/SCI

• Certifications: IAT-III (CISSP, CISA, CASP+)

  Join our dynamic team and contribute to the ongoing security and resilience of ARL's networks and systems. As the Vulnerability Manager, your expertise will be crucial in identifying and addressing potential vulnerabilities, ensuring the overall cybersecurity posture of ARL remains robust and compliant.