Summit Human Capital
Summit Human Capital Federal is seeking a seasoned Operations Security Engineer to support AFNCR's cybersecurity efforts. This role is a Full-time ONSITE opportunity at Joint Base Andrews AFB, MD. The ideal candidate will meet the following criteria.
Responsibilities
Apply DISA STIGs to Windows/Linux servers and network devices Run vulnerability scans (ACAS, SCAP) and fix findings Create and update STIG checklists and POA&Ms Coordinate with IT, cyber teams, vendors, and government stakeholders Help systems achieve and maintain Authority to Operate (ATO)
Requirements
U.S. citizen, active DoD Secret clearance (Top Secret preferred) Bachelor's in computer science/Cybersecurity or 6+ years' equivalent experience Active Security+ (preferred) or CCNA Security or CySA+ 5+ years managing Windows Server (2019/2022), IIS, and SQL Hands-on with PowerShell scripting and STIG evaluations Strong communication skills and ability to work independently
Desired Qualifications
Experience with CCRI, CORA, or similar assessments Knowledge of HBSS, SIEM, and network monitoring Wrote SSPs, POA&Ms, and ATO documentation Automated hardening with GPO, Ansible, or similar tools
Responsibilities
Apply DISA STIGs to Windows/Linux servers and network devices Run vulnerability scans (ACAS, SCAP) and fix findings Create and update STIG checklists and POA&Ms Coordinate with IT, cyber teams, vendors, and government stakeholders Help systems achieve and maintain Authority to Operate (ATO)
Requirements
U.S. citizen, active DoD Secret clearance (Top Secret preferred) Bachelor's in computer science/Cybersecurity or 6+ years' equivalent experience Active Security+ (preferred) or CCNA Security or CySA+ 5+ years managing Windows Server (2019/2022), IIS, and SQL Hands-on with PowerShell scripting and STIG evaluations Strong communication skills and ability to work independently
Desired Qualifications
Experience with CCRI, CORA, or similar assessments Knowledge of HBSS, SIEM, and network monitoring Wrote SSPs, POA&Ms, and ATO documentation Automated hardening with GPO, Ansible, or similar tools