Intermedia Group, a Defense and Intelligence Community Staffing firm has a client-based opening for the following:
Job Title: Information Assurance Security Specialist II Location: Arlington, VA Clearance Level: DoD - Secret Required Certification(s): DoDI 8570 IAT II Certification (e.g. Security+ CE) **Selected applicants may be subject to a government security investigation and must meet eligibility requirements for access to classified information. **
Seeking a security compliance administrator with hands-on experience managing and operating vulnerability scanning tools, such as ACAS (Nessus) and Burp. The position also calls for light security appliance engineering efforts and to act as a backup for our HBSS engineer role; also looking for experience with TASKORDs, OPORDs, POAM tracking / DRA package development, and RMF package creation.
This position will report to our security manager and provide assistance with tracking overall security compliance efforts. This contract is its own CSSP so the position is exposed to a wide range of tools and security practices which needs to be documented and tracked. Time permitting, the position may be required to implement or upgrade an existing security stack capability. Primary duties will consist of HBSS administration and operational support; other duties will include support of various compliance administration tasks, such as security scanning/analysis/reporting (ACAS, Burp), vulnerability (IAVM) compliance, TASKORD/OPORD reporting, STIG compliance validation, etc.
PRINCIPAL DUTIES AND RESPONSIBILITIES
Operates and manages McAfee HBSS implementation
Supports compliance/security scanning activities, to include Assured Compliance Assessment Solution (ACAS) findings analysis and reporting
Manages POAM submissions and status updates
Manages DRA submissions, creation and closures
Advises leadership of new and changing STIG requirements as new STIGs are released
Interfaces with Government leadership to keep them abreast of current security status and pending actions
Performs Requirements gathering and analysis for security related projects
Organizes and facilitates regular STIG reviews with the technical teams.
Reviews STIG compliance checklists submitted by other team members.
Reviews security aspects to new CCB cases and provides recommendations.
Provide guidance with policy and SOP creation and maintenance
As time permits, works with the security engineering staff to implement or upgrade existing capabilities.
Bachelor's degree or equivalent desired
Technical certification in a cyber-security compliance tool desired.
DoDI 8570 IAT II Certification (e.g. Security+ CE)
Security related exposure to wide-range of tools and techniques
At least 3 years’ experience in a security related field
Highly organized and motivated to advance the security teams success
Technical Skills (Must Have):
Strong verbal and written communication skills
Exposure and understanding of HBSS
Exposure and understanding of ACAS
Experience with STIGs, SRGs and Cyber Security Policy.
If you are interested in pursuing this opportunity, please respond back and include the following:
MS WORD Resume
Current and required compensation
Upon receipt, one of our managers will contact you to discuss the position in full detail.