Overview

　　The Vulnerability Remediation team is part of the Risk, Vulnerability and Security Services at Navy Federal Credit Union.

　　As a Vulnerability Remediation Analyst, you will be responsible for providing coordination and support of remediation activities for identified vulnerabilities within the Navy Federal Credit Union environment. Your focus will be on compiling, researching, and analyzing vulnerability data for the various stakeholders to develop and determine the best path forward. You will be part of a remarkable and hard-working team of analysts who apply their risk and information security expertise to help remediate vulnerabilities in an efficient and timely manner.

　　Responsibilities

　　• Collaborate with the Information Security team on the identification and validation of vulnerabilities

　　• Coordinate and communicate with stakeholders to plan and ensure corrective actions are implemented to address identified vulnerabilities

　　• Perform comprehensive analysis of vulnerabilities and reports to help develop and implement appropriate remediation strategies

　　• Evaluate vulnerabilities based on prioritization criteria

　　• Investigate and conduct root cause analysis on persistent or reoccurring vulnerabilities

　　• Serve as a primary point of contact and provide support to the Business Units to address concerns, issues, and escalations related to vulnerability findings and/or remediation plans

　　• Maintain current knowledge of best practices and the threat landscape

　　• Communicate threat information and critical (e.g., 0-day) vulnerabilities to stakeholders

　　• Assist in the development of documentation and presentations on an as-needed basis

　　• Assist in the development of key performance indicators, reporting and metrics

　　Qualifications

　　• Bachelor's degree in information technology, information security, or the equivalent combination of education, training, and experience

　　• Hands-on experience reviewing and analyzing vulnerabilities, assessing the level of risk and ability to provide reasonable recommendations for remediation

　　• Strong understanding of Operating Systems and network protocols

　　• Hands- on experience with technical concepts, security controls, and best practices related to areas such as networking, system administration, application development, and information security

　　• Familiarity with security risk management frameworks and hardening guidelines (e.g., NIST 800-53, CIS Benchmarks)

　　• Excellent communication and presentation skills when presenting proof of concepts, findings, conclusions, and other information to a variety of audiences

　　• Outstanding organizational skills with the ability to prioritize and execute

　　• Ability to manage stakeholder relationships

　　Desired Qualifications

　　• Security certifications (e.g, Security+, CEH) or advanced degree

　　• Experience in ServiceNow vulnerability response and reporting.

　　• Hands-on experience with vulnerability management scanning technologies and assessment methodology

　　• Understanding of the various vulnerability categories at the OS/Web level

　　• System/Process Automation (Orchestration) experience

　　• Experience implementing systems/applications using Agile/Scrum

　　Hours: Monday - Friday, 8:00AM - 4:30PM

　　Location: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602

　　Navy Federal is now hybrid! Our standard enterprise requirement for a hybrid schedule is to report on-site 4-16 days each month. The number of days reporting on-site will ultimately be determined by the employee's leadership and business unit needs. You will learn more throughout the hiring and on boarding process.

　　Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume.

　　About Us

　　You have goals, dreams, hobbies, and things you're passionate about—what's important to you is important to us. We're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them—friends, family, and passions. And we're looking for team members who are passionate about our mission—making a difference in military members' and their families' lives. Together, we can make it happen. Don't take our word for it:

　　• Military Times 2022 Best for Vets Employers

　　• WayUp Top 100 Internship Programs

　　• Forbes® 2022 The Best Employers for New Grads

　　• Fortune Best Workplaces for Women

　　• Fortune 100 Best Companies to Work For®

　　• Computerworld® Best Places to Work in IT

　　• Ripplematch Campus Forward Award - Excellence in Early Career Hiring

　　• Fortune Best Place to Work for Financial and Insurance Services

　　Equal Employment Opportunity: Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/Disability EOE/AA/M/F/Veteran/Disability

　　Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position

　　Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.