Endpoint Vulnerability Management SME / Technical Lead - NIH

Endpoint Vulnerability Management Subject-Matter Expert / Technical Lead Overview cFocus Software is seeking an Endpoint Vulnerability Management Subject-Matter Expert (SME) / Technical Lead to provide advanced technical leadership and expertise in endpoint vulnerability assessment and management.

The SME / Technical Lead will operate and optimize endpoint vulnerability assessment tools, oversee scanning and analysis, and develop automated reporting and SIEM-integrated dashboards to enhance the organization's security posture.

This role requires deep technical knowledge of multiple operating environments, cloud and containerized platforms, and federal information systems, as well as experience in risk analysis and remediation coordination.

This is a full-time position that may require on-site support at federal agency locations in the Washington, D.C. metro area.

Some telework flexibility may be available depending on mission requirements.   Must be able to obtain and maintain a Public Trust or higher-level security clearance as required by the agency.

Responsibilities The Endpoint Vulnerability Management SME / Technical Lead shall perform duties that include, but are not limited to :

• Lead endpoint vulnerability management operations, ensuring comprehensive coverage across enterprise endpoints and systems.
• Operate endpoint vulnerability assessment tools, leveraging both agent- and network-based scanning methodologies.
• Analyze and interpret scan results to identify trends, systemic issues, and root causes of vulnerabilities.
• Integrate vulnerability management use cases into the organization’s Security Information and Event Management (SIEM) solution.
• Develop and maintain automated and manual reporting, dashboards, and alerts to communicate vulnerability status, remediation progress, and compliance posture.
• Secure and manage endpoints across diverse environments, including cloud Infrastructure-as-a-Service (IaaS), containerized environments, and mobile, database, and enterprise platforms.
• Implement security controls for multiple operating systems such as Windows, macOS, Linux, Unix (including Red Hat Enterprise Linux, Oracle Enterprise Linux, and Solaris).
• Support the protection and compliance of federal business systems supporting financial management, budget, procurement, travel, property, HR / payroll, and data warehousing functions.

Apply cybersecurity principles to secure clinical and / or scientific instrumentation, as well as Operational Technology (OT) systems (preferred).

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.