Information Assurance (IA)/Cybersecurity Specialist
ASRC Federal, Mission Solutions (AFMS) is a premier provider of systems engineering, software engineering, system integration and project management services for real-time, mission-critical defense systems.
Responsibilities:
The Information Assurance(IA)/Cybersecurity Specialist will perform DIACAP IA Certification & Accreditation (C&A)/Risk Management Framework (RMF) Cybersecurity Assessment & Authorization (A&A), and Technical (hands-on) services related to IA/Cybersecurity Engineering in accordance with U.
S.
Navy/NAVSEA, DoD, and NIST Cybersecurity standards.
Assist assigned clients in the creation, updating, and delivery of artifacts to support NAVSEA Cybersecurity Federal Information Systems Management Act (FISMA) compliance:
Assist system owners and other representatives to create, maintain and update DIACAP and/or RMF accreditation and authorization artifacts Perform patch management and software updates for Information Systems, workstation and server operating systems and applications Download, install, and modify IT assets in accordance with Information Assurance Vulnerabilities Assessments (IAVA) and Bulletins (IAVB).
Assist in Contingency Planning, Annual Security Control Testing, Security reviews.
Configure and harden IT systems per DISA Security Technical Implementation Guides (STIGs) Support Validation efforts utilizing common COTS software tools -- i.
e.
Visio, Word, Excel -- and eMASS to create, maintain, and deliver Validation artifacts, Certification Testing and Evaluation (CT&E) Risk Reports.
Additional Validation support includes:
Security Testing, risk analysis, and verification using authorized toolsets and methods -- i.
e.
DISA SCC, STIG Viewer, ACAS, Nipper Networking device security testing (i.
e.
firewalls, routers, switches, intrusion detection and prevention systems) Application security testing in accordance with DISA STIGs Wireless networking independent security testing Physical Security Testing Plan of Actions and Milestones (POA&M) development Provide input to weekly project status reports Support network scanning and incident response Assist in the design and configuration security tools Support the mitigation of identified security risks and vulnerabilities in accordance with policies, requirements, standards, practices, or vulnerability procedures to sustain a government defined acceptable level of risk.
Perform daily monitoring of trouble ticketing systems -- i.
e.
Remedy Assist in developing Standard Operating Procedures and other organization process documents Process Request for Changes (RFC) for firewall ACL change requests.
Ensure the Port, protocol and services are on the approved DISA list and coordinated with requestors.
Qualifications Cisco, Unix/Linux, and Windows certifications (Not required but a Plus) One of the following certifications required (CAP, GSLC, CISM, CISSP (or associate)) Cybersecurity/related tools (e.
g.
Nessus/ACAS, Secure Compliance Automation Protocol, STIG Viewer, eMASS, MS-Visio, Word, Excel) experience is a plus U.
S.
Secret security clearance required ASRC Federal and its subsidiaries are Equal Opportunity/Affirmative Action employers.
All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation gender identification, national origin religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.
.
Estimated Salary: $20 to $28 per hour based on qualifications.
Responsibilities:
The Information Assurance(IA)/Cybersecurity Specialist will perform DIACAP IA Certification & Accreditation (C&A)/Risk Management Framework (RMF) Cybersecurity Assessment & Authorization (A&A), and Technical (hands-on) services related to IA/Cybersecurity Engineering in accordance with U.
S.
Navy/NAVSEA, DoD, and NIST Cybersecurity standards.
Assist assigned clients in the creation, updating, and delivery of artifacts to support NAVSEA Cybersecurity Federal Information Systems Management Act (FISMA) compliance:
Assist system owners and other representatives to create, maintain and update DIACAP and/or RMF accreditation and authorization artifacts Perform patch management and software updates for Information Systems, workstation and server operating systems and applications Download, install, and modify IT assets in accordance with Information Assurance Vulnerabilities Assessments (IAVA) and Bulletins (IAVB).
Assist in Contingency Planning, Annual Security Control Testing, Security reviews.
Configure and harden IT systems per DISA Security Technical Implementation Guides (STIGs) Support Validation efforts utilizing common COTS software tools -- i.
e.
Visio, Word, Excel -- and eMASS to create, maintain, and deliver Validation artifacts, Certification Testing and Evaluation (CT&E) Risk Reports.
Additional Validation support includes:
Security Testing, risk analysis, and verification using authorized toolsets and methods -- i.
e.
DISA SCC, STIG Viewer, ACAS, Nipper Networking device security testing (i.
e.
firewalls, routers, switches, intrusion detection and prevention systems) Application security testing in accordance with DISA STIGs Wireless networking independent security testing Physical Security Testing Plan of Actions and Milestones (POA&M) development Provide input to weekly project status reports Support network scanning and incident response Assist in the design and configuration security tools Support the mitigation of identified security risks and vulnerabilities in accordance with policies, requirements, standards, practices, or vulnerability procedures to sustain a government defined acceptable level of risk.
Perform daily monitoring of trouble ticketing systems -- i.
e.
Remedy Assist in developing Standard Operating Procedures and other organization process documents Process Request for Changes (RFC) for firewall ACL change requests.
Ensure the Port, protocol and services are on the approved DISA list and coordinated with requestors.
Qualifications Cisco, Unix/Linux, and Windows certifications (Not required but a Plus) One of the following certifications required (CAP, GSLC, CISM, CISSP (or associate)) Cybersecurity/related tools (e.
g.
Nessus/ACAS, Secure Compliance Automation Protocol, STIG Viewer, eMASS, MS-Visio, Word, Excel) experience is a plus U.
S.
Secret security clearance required ASRC Federal and its subsidiaries are Equal Opportunity/Affirmative Action employers.
All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation gender identification, national origin religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.
.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
