**Responsibilities & Qualifications** **RESPONSIBILITIES** + Vulnerability Management + Subscribe to and monitor for patch releases for all items on the software whitelist. + Provide vulnerability resolution and remediation services for the operating system and applications installed on client endpoint devices. + Provide Microsoft desktop whitelisting support for all USITC software. + Maintain approved software for desktops, ticketing solution, printers. + Ensure software is patched to current levels before deployment. + Provide virus scanning and remediation services for client endpoints. + Ensure endpoint devices and network printers are fully patched and that anti-virus software is up to date. + Resolve High and Critical CISA Known Exploited Vulnerabilities (KEV) within specified timeframes. + Communicate with customers to schedule and address vulnerability remediation that was unable to be addressed remotely + Track, document, and remediate vulnerabilities within defined SLAs requirements with the use of PowerBi Dashboards and Nessus Scan reports. + Use Nessus to scan devices new devices for compliance before deploying to the network. This may occasionally include building custom scan reports and working with the Cyber Security Division (CSD). + Ensure monthly desktop vulnerability reports to USITC leadership are accurate and completed before the 1 st of the following month. Provide POAM explanations for non-mitigated findings before submitting to USITC leadership + Endpoint Management and Support + Utilize MECM and Intune for creating, updating, and deprecating approved applications within the USITC repository. + Ensure all Sofware changes are accurately updated and tracked within SharePoint and ServiceNow. + Maintain accurate collections and exercise good " housekeeping" of all software versions and deployments within MECM and InTune. + Continuously update devices drivers for production computers and devices, including the USITC base image.Maintain accurate records, versioning, and change logs of update packages within SharePoint trackers, MECM, and GPO. + Apply updates to Group Policy as required while following approved processes and maintaining accurate change logs. + Ensure stock of imaged devices are up to date and ready for rapid deployment. + Maintain a standard workstation baseline configuration image per approved USITC secure configuration standards.This includes ensuring monthly security and application updates are regularly updated in the Task Sequence as new versions are released. + Ensure workstation deployments follow a defined checklist prior to production deployment ensuring systems are fully patched, and anti-virus software and System Center Configuration Manager (SCCM) software are installed. + Use remote diagnosis and tools to resolve incidents. + Provide technical support for client endpoints: incident analysis, fault isolation troubleshooting, and remedial/restoration actions after escalation to resolve tickets. + Maintain and enforce a software whitelist containing approved software titles and versions. + Resolve basic issues to printers, copiers, faxes, and multifunction devices. + Coordinate with external contractors for assets under warranty. + Perform software installations using automated remote deployment mechanisms. + Provide software/application training as needed. + Maintain and modify AppLocker rules and Active Directory groups when required while adhering to approved processes. + Continuously document process and applications changes by creating or updating SOPs. **REQUIRED QUALIFICATIONS** + Active Secret Clearance + 2+ years of experience in a Tier 2 or equivalent technical support role. + 2+ years of experience with Vulnerability Management + Proficient in using ServiceNow for incident and problem management. + Solid understanding of Tenable Security Center and reports. + Experience with mitigation of end user vulnerabilities. + Strong analytical and critical thinking skills + Excellent verbal and written communication skills + High school diploma + Proficiency with word processing, spreadsheets, databases, and other Office Suite applications + US Citizen **DESIRED QUALIFICATIONS** + ITIL Foundation knowledge (certification preferred). + Experience with automated patch management tools. + Strong backround in SCCM/MECM and InTune and application deployment. + Basic scripting or programming skills, especially PowerShell + Technical certification, or HDI Certification **Overview** We are seeking a Vulnerability Management Specialist to join our team supporting US International Trade Commission's Information Technology Service Desk Support Services contract. The contract provides and operates an integrated IT service desk (ITSD) and IT support services. These services support the current and future operational needs of the U.S. International Trade Commission’s IT users and their systems. TekSynap is a fast growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. “Technology moving at the speed of thought” embodies these principles – the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers. We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays. Visit us at www.TekSynap.com . Apply now to explore jobs with us! The safety and health of our employees is of the utmost importance. Employees are required to comply with any vaccination requirements mandated by contract, applicable law or regulation. By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP". **Additional Job Information** **WORK ENVIRONMENT AND PHYSICAL DEMANDS** The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. + Location: Washington, DC with occasional travel required to Sterling, VA + Type of environment: Office + Noise level: Low - Medium + Work schedule: Schedule is day shift Monday – Friday. May be requested to work evenings and weekends to meet program and contract needs. + Amount of Travel: Less than 10% **PHYSICAL DEMANDS** The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to use hands to handle, feel, touch; reach with hands and arms; talk and hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds. The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus. **WORK AUTHORIZATION/SECURITY CLEARANCE** + US Citizen + Secret Clearance **OTHER DUTIES** Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. **EQUAL EMPLOYMENT OPPORTUNITY** In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, sexual orientation, gender identity, protected veteran status, national origin, disability, age, genetic information or any other characteristic protected by law (referred to as “protected status”). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment. TekSynap is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please contact hr@teksynap.com for assistance. **Job Locations** _US-DC-Washington_ **ID** _2025-7743_ **Category** _Systems Administrator/Engineer_ **Type** _Regular Full-Time_