Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, IBM Guardium, HP WeblInspect, Network Mapper (NMAP), and/or similar applications.

At least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP) or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1 IAM Level III proficiency.

At least 3 years serving as an Information Systems Security Officer (ISSO) at a cleared facility. Familiarity with the use and operation of security tools including Tenable.

Familiar with patch and vulnerability management processes and tools (e.g., Tenable Nessus). Assured Compliance Assessment Solution (ACAS) trainingSecurity RequirementsCandidate must be a US Citizen and possess (as well as maintain) a Final Secret Clearance and meet the eligibility requirements to obtain (and maintain) a Final Top Secret Clearance.

Experienced in Information Security, Internal Audit and/or IT Risk Management functions. Establishes strict program control processes and policies to ensure mitigation of risks and supports obtaining certification and accreditation of systems.

Bachelor's Degree in Computer Science or related discipline (four years of ISSO/Intermediate Level Cybersecurity experience may be substituted for a Bachelor's degree. Evaluating, interpreting, and writing RMF Policy and Procedure documentation.

Assist in the planning, organization, maintenance and compliance of multiple classified systems in accordance with NISPOM, Risk Management Framework (RMF) requirements, and Defense Counterintelligence and Security Agency (DCSA) Assessment & Authorization Process Manual (DAAPM.

Experience in a DOD Information Security contractor security environment with demonstrated knowledge of managing classified information systems operation and security.

Assist with the performance of Information Security Engineer duties in eMASS as defined in the RMF.Help draft and maintain documentation associated with the Assessment and Authorization process.

US Citizenship with the ability to obtain and maintain a Secret security clearance Preferred Requirements: Knowledge of ACAS, NESSUS, SPLUNK, SCAP, POA&Ms, NIST, DIACAP, NISPOM, system audits, vulnerability scanning, and RMF package development.

Understanding of Information Assurance (IA) systems: Host Based Security System (HBSS), Assured Compliance Assessment Solution (ACAS), Nessus. Experience with Virtual Machines and hardware virtualization technology (VMWare, Hyper-V.

Support the Risk Management Framework (RMF) in a classified environment while helping to identify and implement overall security requirements for the proper handling of data and provide guidance for development and operational efforts regarding information assurance (IA) functions, particularly those focusing on IA planning, infrastructure protection, and defensive strategy.

Lead the DevSecOps team consisting of system administrators, application administrators, configuration management, program ISSO, developers, and DBAs. Familiarity with the Risk Management Framework, the experience with DoD Assessment and Authorization process for a DoD Information System.

Experience with Multifactor Authentication and PKI. Experience with patching and deploying software products and updates using Microsoft Windows Server Update Services (WSUS) Must have Security+ CE or CISSP Certification and Operating System Certification (Windows.

Vulnerability Management - Nessus vulnerability scanning and reporting. Incident Response Team (IR/IRT) troubleshooting, root cause analysis, and remediation verification. We are looking for a Cyber Security Analyst to help plan, implement, and maintain a Security Operations Center (SOC) program.