A Vulnerability Assessment and Management specialist conducts assessments of threats and vulnerabilities; determines deviations from acceptable configurations, enterprise or local policy; assesses the level of risk; and develops and/or recommends appropriate mitigation countermeasures in operational and nonoperational situations.
Below is a sampling of the abilities, tasks and responsibilities for the Vulnerability Assessment and Management specialty:
Analyzes organization’s cyber defense policies and configurations and evaluate compliance with regulations and organizational directives.
Conducts and/or support authorized penetration testing on enterprise network assets.
Maintains a deployable cyber defense audit toolkit (e.g., specialized cyber defense software and hardware) to support cyber defense audit missions.
Prepares audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions.
Conducts required reviews as appropriate within environment (e.g., Technical Surveillance, Countermeasure Reviews [TSCM], TEMPEST countermeasure reviews).
Performs technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications).
Consults with organizations’ leadership and makes recommendations regarding the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems and processes).