Qualys System Administrator
Ashburn Consulting LLCRockville, Maryland, United States
Posted April 10, 2026
Full Time
About the Company
Ashburn Consulting, a Small Business based in the Washington, DC metropolitan area, specializes in providing network and network security solutions in complex environments to a select set of government and business clients.
Job Description
Ashburn Consulting, a Small Business based in the Washington, DC metropolitan area, specializes in providing network and network security solutions in complex environments to a select set of government and business clients.
Requirements
- Administer and maintain the Qualys Cloud Platform
- Configure and manage scanners (internal, passive, and cloud-based)
- Maintain asset tagging strategies aligned with environments (Prod/Non-Prod), system owners, data classifications, and compliance scopes
- Manage user roles, permissions, and access controls within Qualys
- Execute scheduled and ad-hoc vulnerability scans across on-prem, cloud, and endpoint environments
- Validate scan results, reduce false positives, and ensure data accuracy
- Perform vulnerability triage and risk-based prioritization using CVSS, exploitability, threat intelligence, and business context
- Support remediation efforts by working with infrastructure, application, and cloud teams to validate fixes and re-scan assets
- Map Qualys findings to regulatory and control frameworks (e.g., NIST SP 800-53, HIPAA Security Rule, ISO 27001)
- Provide vulnerability and exposure data to support: Risk register entries, Policy exception requests, Audit and assessment activities
- Generate compliance and executive-level reports for security leadership and governance committees
- Develop and maintain custom dashboards, reports, and scorecards for operational, management, and executive audiences
- Leverage Qualys APIs to automate data extraction, integrations, and reporting (e.g., ServiceNow GRC, ticketing, SIEM)
- Support continuous monitoring initiatives by improving scan coverage, frequency, and data quality
- Maintain standard operating procedures (SOPs) and technical documentation for vulnerability management processes
- Participate in incident response, risk review boards, and security working groups as a subject matter expert
- Support internal and external audits by providing evidence, scan results, and remediation validation
Benefits
- Equal Opportunity Employer
- Equal Opportunity Affirmative Action Employer
