Key Responsibilities:
- Perform vulnerability scanning and assessment using tools such as Nessus and Qualys
- Support penetration testing activities, including coordination, evidence collection, and remediation tracking
- Analyze scan results, identify risks, and prioritize vulnerabilities based on severity
- Prepare detailed security reports, risk assessments, and documentation for stakeholders
- Assist in securing SCADA/ICS environments and support related security initiatives
- Align security practices with NIST Cybersecurity Framework (CSF) and CIS Controls
- Track and validate remediation efforts and ensure closure of identified vulnerabilities
- Collaborate with IT and security teams to implement security best practices
- Support audits, compliance activities, and government/municipal security requirements
Required Qualifications:
- CompTIA Security+, CEH, or equivalent certification (Mandatory)
- Bachelor’s degree in Cybersecurity, Information Technology, or related field
- 3–6 years of experience in cybersecurity or information security roles
Required Skills & Experience:
- Hands-on experience with vulnerability scanning tools (e.g., Nessus, Qualys)
- Basic to intermediate understanding of penetration testing concepts and tools (e.g., Burp Suite)
- Strong skills in documentation, report writing, and risk analysis
- Knowledge of VAPT processes and lifecycle
- Familiarity with SCADA/ICS security concepts
- Understanding of NIST CSF and CIS Controls
- Experience working in government or municipal environments is a plus
- Strong analytical thinking and attention to detail
