Offer summary

Qualifications:

Bachelor's degree in Computer Science, Information Security, or related field., 6-10 years of relevant experience managing security tools., Proven experience as a Nessus-Tenable Security Administrator., Must hold a DoD 8140 compliant certification such as Security+ and a Secret Clearance..

Key responsibilities:

Manage and sustain the ACAS and Tenable solutions, including Nessus and Security Center.

Configure and maintain security tools, scan policies, and user access.

Collaborate with teams to address security findings and generate reports.

Ensure compliance with security policies and industry standards.

Job description

This is a remote position.

As a Tenable Administrator, you will be responsible for responsible for development, and management of ACAS scanning activities to enhance the organizations cybersecurity posture. Your primary focus will be overseeing and managing our ACAS (Assured Compliance Assessment Solution) scanning activities and the overall Tenable solution. You will work closely with the cybersecurity team, IT staff, and other stakeholders to ensure the effective operation of ACAS solution and their integration into the organizations infrastructure.

Responsibilities:

You will be a TenableNessus Security Administrator for the Engineering Operations team for the EITaaS Enterprise solution based on TenableNessus.

· Administrate and sustainment of the ACAS solution

· Maintain and configure Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center on both LinuxUnix and Windows based environments

· Ensure compliance with organizational security policies and industry best practices

· Develop and implement strategies to optimize scanning processes and improve vulnerability management

· Collaborate with crossfunctional teams to address security findings and implement remediation plans

· Generate and present reports to stakeholders on vulnerability assessments and risk mitigation efforts

· Responsible for installing and configuring Nessus Agents

· Secure Tenable server an Enable TLS

· Integrating Tenable products with LDAP, Active Directory, and CyberArk.

· Responsible for the creation of tenable Organizations, Repositories, and Scan Zones.

· Responsible for local and LDAP based user management.

· Responsible for configuring tenable pluginsfeeds and adding audit files

· Responsible for adding scan policies, audit policies, and credentials to Security Center, and Nessus Manager.

· Responsible for configuring Nessus Manager scan pulls to Security Center

· Responsible for defining scan policies and audit policies

· Responsible for adding scan credentials

· Responsible for Scheduling scans

· Responsible for Generating Scan Reports

· Responsible for importinguploading scan reports for Vulnerability

· Responsible for the Analysis and validation of the scan results.

Requirements
Required:

Required DoD 8140 compliant certification such as CompTIA Security+

Other relevant cybersecurity certifications like Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM), are a plus.

Must have a Secret Clearance

Bachelors degree in Computer Science, Information Security, or a related field (or equivalent work experience).*

610 years of relevant experience*

Proven experience as a NessusTenable Security Administrator or in a similar role, with handson experience in managing security tools.

Indepth knowledge of the following security technologies: Nessus Tenable (ACAS), Microsoft Defender for Endpoint, and STIG Management.

Familiarity with network and system security principles, protocols, and configurations.

Strong analytical and problemsolving skills to troubleshoot and resolve complex security tool issues.

Excellent communication and collaboration skills to work effectively with crossfunctional teams.

Understanding of industry compliance standards (e.g., NIST) and relevant regulations (e.g., GDPR, HIPAA) is advantageous.

Willingness to stay updated with the latest cybersecurity trends and emerging security tools.

Must be able to obtain a security clearance (Secret)