PCI Government Services is hiring: Cybersecurity Network Defense Specialist in Q

Overview

Please note that the position, Cybersecurity Network Defense Specialist (Network/Defense Analyst & Cyber Network/Defense Incident Responder), is contingent upon contract award. This position may be located in Quantico, VA, Hanover, MD or Huntsville, AL.

Responsibilities

• Update and maintain the SOPs for VM.
• Conduct vulnerability auditing on 100% of DCSA ISs (currently with DISA Assured Compliance Assessment Solution (ACAS)). The Contractor shall provide weekly audits to the system owners and on demand; audits shall be performed on devices not accessible during automated vulnerability audits on all DCSA enclaves.
• Maintain compliance to the standards set by the DISA Field Security Operations.
• Command Cyber Readiness Inspectors (CCRI) and C&A and all applicable DoD inspection programs.
• Develop and maintain a dashboard on DCSA CND SharePoint with current vulnerabilities and IAVMs on DCSA computing devices. Include associated ACAS plugins, suspense dates, POA&M status, system owners, percentage of compliance, and status. Provide DoD Security and Technical Configuration Control Auditing: Manage the Security Technical Implementation Guide (STIG) progress within DCSA programs (including PEO program), and effectively work with programs, system owners, system administrators, ISSOs, and Enterprise CISO cyber team to advise, coordinate, assure configurations and inspect program assets for compliance with the STIG for the assets being reviewed.
• Develop and maintain a dashboard with the current Security Requirements Guides (SRG) and STIGs and implementation status on DCSA environment. Include associated vulnerabilities, suspense dates, POA&M status, system owners, percentage of compliance, and status.
• Conduct monthly audits including, but not limited to, STIG-SRG, SCAP, and all system vulnerabilities in compliance with mandated DoD directives.
• Conduct and report daily audits in support of identity assurance to validate user accounts, computer accounts, privileged accounts, system accounts, and report any anomalies to Incident Responders.
• Integrate approved data and systems with the DCSA IOD.
• Coordinate the assessment of vulnerabilities with system owners.
• Provide weekly status reports on all vulnerability metrics.
• Manage the ACAS Security Center, scanners and connections for the vulnerability management tracking systems in coordination with the enterprise CISO/Cyber team.
• In coordination with the enterprise CISO cyber team, conduct vulnerability scans on 100% of PEO ISs.

Qualifications

• Bachelor's degree from an accredited university/college or 4 years of additional experience can be substituted.
• Must have and maintain an active DoD Top Secret/SCI clearance.
• Bachelor’s degree in Computer Science or a related IT field or 4 years of experience can be substituted for the degree within the field.
• 5 years of experience managing enterprise cybersecurity tool installation.
• Experience with leading FireEye tool implementations and meeting timelines, budgets, and RMF requirements to be submitted for Authority to Operate (ATO).
• 10 years of experience gathering, analyzing and documenting cyber threat intelligence.
• Experience providing cyber threat monitoring and defense capabilities.
• Experience with POAMs (and Enterprise Mission Assurance Support Service (eMASS), preferred).
• Experience with HELIX deployment and operations.

Pay Range

USD $175,000.00 - USD $200,000.00 /Yr.

EEO

PCI Federal Services (PCIFS) and its subsidiaries is an equal-opportunity employer. PCIFS does not discriminate on the basis of age, sex, race, national origin, religion, marital status, sexual orientation or identity, Veteran or Disability status.

Preference may be extended to qualified Native American Indian candidates in accordance with applicable federal law.