Cyber Command Vulnerability Management Specialist | Brooklyn, NY | Only W2

Cyber Command Vulnerability Management SpecialistPosition OverviewThe Cyber Command Threat Management Division is seeking a Senior Vulnerability Management Specialist to serve as a subject matter expert in vulnerability management, risk assessment, threat analysis, and security remediation.Key ResponsibilitiesResearch, analyze, and brief management on CVEs, CVSS, Vector Strings, NVD, MITRE ATT&CK, attack vectors, and mitigation strategies.Design, architect, and maintain Rapid7 vulnerability management scanning infrastructure.Configure and execute vulnerability scans across enterprise networks using Rapid7.Conduct vulnerability assessments and prioritize risks through analysis, dashboards, and reporting.Assess security vulnerabilities, evaluate risk impact, and implement remediation strategies.Present technical briefings on threat intelligence, vulnerabilities, and cybersecurity trends.Develop automation scripts using Python and PowerShell.Automate vulnerability detection, reporting, and tracking processes.Create executive-level reports and dashboards using Rapid7, Excel, PowerPoint, and other reporting tools.Collaborate with stakeholders across NYC agencies on vulnerability management initiatives.Mandatory Skills8+ years of Cybersecurity experience.Strong expertise in:Vulnerability ManagementRapid7 Vulnerability ScanningAttack Surface ManagementVulnerability AssessmentsThreat Intelligence AnalysisRisk Assessment & RemediationDeep understanding of:CVEsCVSSVector StringsNVDMITRE ATT&CK FrameworkAttack Vectors & Mitigation TechniquesExtensive experience with Python and PowerShell scripting.Strong hands-on experience with Rapid7 architecture, implementation, and reporting.Advanced Excel skills including VLOOKUPs, Pivot Tables, and data analysis.Desired SkillsTableau reporting and dashboard development.Experience with Next-Generation Firewalls, IDS/IPS, DMZ, VPN, DNS, SMTP, HTTP, and Proxy technologies.Knowledge of Windows, Linux, VMware, Cisco IOS, Android, and iOS security.Understanding of encryption, hashing, and public-key cryptography.Familiarity with NIST, CIS, Palo Alto, Fortinet, Check Point, F5, Juniper, and Microsoft security best practices.Experience analyzing security policies, procedures, and compliance documentation.Strong written and verbal communication skills.Preferred CertificationsCISSPGSECGCIAGCIHCEHCWAPT