Jacobs Vulnerability Management Engineer in Arlington, Virginia

Vulnerability Management Engineer


“Jacobs National Security Solutions (NSS) provides world-class IT network and service management capabilities; cutting edge cyber threat awareness and cybersecurity solutions; innovative web- and software applications development; and advanced data analytics for major clients in the Intelligence Community, Department of Defense, and Federal Civilian Agencies.

Our forward thinking solutions deliver an integrated approach to IT network design and management, full lifecycle IT service management, IT service delivery, asset management, logistics and procurement, and vendor management. We leverage the expertise and passion of our employees to conduct identity and access management, penetration testing, and vulnerability assessments for our nation’s most closely guarded agencies and networks. Our Cyber Security Operations Centers ensure safe, effective network operations for Federal clients while our data scientists are helping stop illegal acts before they can endanger Americans or our way of life.

Jacobs promotes a culture of operational excellence to create a safer, smarter, and more connected world while upholding the highest standards of compliance, quality and integrity.

We continue to thrive and need your talent and motivation to help propel us farther, faster.”

Jacobs is currently seeking a Vulnerability Management Engineer for the Arlington, Va office Duties will include:

  • Oversee and conduct monthly scanning activities (Nessus, Security Center CV, Tripwire IP360, NCC SQuirreL, Imperva, Mainframe etc.)

  • Develop security baseline configurations for several operating system platforms (i.e. Windows, UNIX, Linux, Cisco, Juniper, etc.) and scan for compliance/vulnerabilities

  • Report vulnerabilities and facilitate vulnerability remediation strategies with Points of Contacts (POCs). Present vulnerability risk posture to system owners in monthly meetings

  • Identify false positives, risk acceptance candidates, perform root cause analysis, confirm vulnerabilities with Kali Linux, Metasploit Pro, etc.

  • Write monthly and quarterly reports that are submitted to upper management, which summarize all of the vulnerability statistics for the entire enterprise.


  • One (1) year of college in a computer field and three (3) years of directly related experience, or any equivalent combination of education or experience for a total of four (4) years. Progressive relevant training and/or certification in appropriate discipline may be substituted for one (1) year of the education or experience requirement.

  • 1 years of Information Assurance

  • 2 years overall IT experience.

  • Experience is preferred in vulnerability management and vulnerability remediation guidance, specifically in the following areas: Windows or UNIX

  • Knowledge in the operation and security of Network Devices (i.e. Cisco, Juniper, Citrix, Palo Alto, etc.) Oracle, SQL Server

  • In depth familiarity with Windows and UNIX operating systems.

Desired Requirements:

  • FIPS and NIST Special Publications.

  • Vulnerability scanning tools, such as Nessus, Security Center CV, CIS RAT, Imperva, NCC SQuirreL, Tripwire IP 360, etc.

  • SQL Server and Oracle Database security hardening (Mainframe DB2 is a plus).

  • Network Device Security Hardening (Cisco routers, switches, firewalls, Palo Alto, Citrix NetScaler, Juniper SA)

  • Windows 7 and 10 OS

  • Kali (Linux) is a plus

  • CISSP, GPEN, PMP, CISA, CISM certification a plus.

Essential Job Functions:

Physical Requirements:

  • Working at a computer or desk (Considerations: Sitting, Eyes, Hands)

  • May involve long periods of sitting

Work Environment:

  • An inside office environment (Considerations: Closed quarters, lighting, and temperature fluctuations)

  • Needs to be able to work well with and support co-workers and clients

  • Needs to have clear, concise and accurate communication skills

Equipment and Machines:

  • Standard office equipment and machines, computer workstation


  • Punctuality and regular attendance are necessary to meet deadlines. Regular attendance is necessary and required

Other Essential Functions:

  • Must be able to communicate, verbal and written, effectively

  • Must demonstrate professional behavior at all times when dealing with clients, management and employees

  • Grooming and dress must be appropriate for the position and must not impose a safety risk to the employee or others

  • Must be able to support and work in a proactive team environment

  • Must hold the safety of yourself and those around you as the number one priority in the workplace

  • Completion of required certifications required within six (6) months of hire date

  • Must be a US Citizen

Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law. Jacobs is a background screening, drug-free workplace.

Primary Location United States-Virginia-Arlington

Travel No

Req ID: I2S0002T5