Sumaria Systems, LLC
Information Assurance II (Vulnerability Assessment Analyst – ACAS Security Manag
Sumaria Systems, LLC, Montgomery, Alabama, United States, 36136
Information Assurance II (Vulnerability Assessment Analyst – ACAS Security Manager)
1 month ago Be among the first 25 applicants
Job Title:
Information Assurance II (Vulnerability Assessment Analyst – ACAS Security Manager)
Job Description:
Information Networks are critical to modern warfare. This position plays a critical role in our nation’s defense through the operation, management and defense of the Air Force portion of the Department of Defense Information Network. In this role, you will maintain network infrastructure, to include routers, switches, proxies, firewalls, servers, workstations, printers, Storage Area Networks (SAN) and test labs, to provide maneuverability and defense of both classified and unclassified networks.
Responsibilities
Measure effectiveness of defense architecture against known vulnerabilities using available tools within organization to find them. Analyze, prioritize, and mitigate vulnerabilities to lower or eliminate risk.
Perform/review/validate vulnerability scans to include analysis of results, identification of false positives, exceptions, and subsequent POA&Ms and/or MFRs creation, monitoring and reporting to include POA&M status and contributions to Monthly and Quarterly reports.
Collect and review data gathered from a variety of tools (including intrusion detection system alerts, firewall, network traffic logs, and host system logs) to analyze events for possible attacks that occur within computing, network, or enclave environments.
Validate, investigate, and analyze all response activities related to cyber incidents. These tasks include but are not limited to: creating and maintaining incident tracking information; planning, coordinating, and directing recovery activities; and incidents analysis tasks, including examining all available information and supporting evidence of artifacts related to an incident or event.
Perform assessments of systems and networks within the network environment or enclave and identify where those systems and/or networks deviate from acceptable configurations, enclave policy, or local policy.
Create reports to effectively communicate to government problems and proposed solutions.
Actively manage (inventory, track, and request corrective action) all hardware devices on network that only authorized devices are given access and unauthorized and unmanaged devices are found and prevented from gaining access.
Actively manage (inventory, track, and correct) all software on the network so that only authorized software is installed and can execute, and that unauthorized and unmanaged software is found and prevented from installation or execution.
Submit tickets to appropriate teams for corrective actions.
Other cybersecurity related tasks, as assigned.
Required Skills & Education Education:
High School Diploma or GED
Certification Requirements:
DoDD 8140 IAT-II; DISA ACAS Supervisor and Operator Course and DISA Forescout Comply to Connect (C2C) Certified Administrator Training (FSCA) AND Security+ or CEH
Years of Experience:
3+ years of experience in utilizing security relevant tools to include: NESSUS, ACAS, DISA STIGs, Audit Tools, Forescout, ESS, Performs assessments of system and network and identifies where the system/network deviate from acceptable configurations, DoD policy, or local policy/guidelines.
Travel:
Yes (less than 10%)
Security Clearance Required:
Secret
Position Type:
Full Time
Work Location:
Maxwell AFB, Gunter Annex, AL
# Openings:
1
Expected salary range:
$75,0000 to $80,000
Agency submissions are not being accepted at this time.
Sumaria is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, or protected veteran status.
Sumaria Systems only provides engineering services to the federal government and does not provide professional engineering or surveying services to the public within the meaning of Ohio Revised Code Section 4733.16.
#J-18808-Ljbffr
Job Title:
Information Assurance II (Vulnerability Assessment Analyst – ACAS Security Manager)
Job Description:
Information Networks are critical to modern warfare. This position plays a critical role in our nation’s defense through the operation, management and defense of the Air Force portion of the Department of Defense Information Network. In this role, you will maintain network infrastructure, to include routers, switches, proxies, firewalls, servers, workstations, printers, Storage Area Networks (SAN) and test labs, to provide maneuverability and defense of both classified and unclassified networks.
Responsibilities
Measure effectiveness of defense architecture against known vulnerabilities using available tools within organization to find them. Analyze, prioritize, and mitigate vulnerabilities to lower or eliminate risk.
Perform/review/validate vulnerability scans to include analysis of results, identification of false positives, exceptions, and subsequent POA&Ms and/or MFRs creation, monitoring and reporting to include POA&M status and contributions to Monthly and Quarterly reports.
Collect and review data gathered from a variety of tools (including intrusion detection system alerts, firewall, network traffic logs, and host system logs) to analyze events for possible attacks that occur within computing, network, or enclave environments.
Validate, investigate, and analyze all response activities related to cyber incidents. These tasks include but are not limited to: creating and maintaining incident tracking information; planning, coordinating, and directing recovery activities; and incidents analysis tasks, including examining all available information and supporting evidence of artifacts related to an incident or event.
Perform assessments of systems and networks within the network environment or enclave and identify where those systems and/or networks deviate from acceptable configurations, enclave policy, or local policy.
Create reports to effectively communicate to government problems and proposed solutions.
Actively manage (inventory, track, and request corrective action) all hardware devices on network that only authorized devices are given access and unauthorized and unmanaged devices are found and prevented from gaining access.
Actively manage (inventory, track, and correct) all software on the network so that only authorized software is installed and can execute, and that unauthorized and unmanaged software is found and prevented from installation or execution.
Submit tickets to appropriate teams for corrective actions.
Other cybersecurity related tasks, as assigned.
Required Skills & Education Education:
High School Diploma or GED
Certification Requirements:
DoDD 8140 IAT-II; DISA ACAS Supervisor and Operator Course and DISA Forescout Comply to Connect (C2C) Certified Administrator Training (FSCA) AND Security+ or CEH
Years of Experience:
3+ years of experience in utilizing security relevant tools to include: NESSUS, ACAS, DISA STIGs, Audit Tools, Forescout, ESS, Performs assessments of system and network and identifies where the system/network deviate from acceptable configurations, DoD policy, or local policy/guidelines.
Travel:
Yes (less than 10%)
Security Clearance Required:
Secret
Position Type:
Full Time
Work Location:
Maxwell AFB, Gunter Annex, AL
# Openings:
1
Expected salary range:
$75,0000 to $80,000
Agency submissions are not being accepted at this time.
Sumaria is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, or protected veteran status.
Sumaria Systems only provides engineering services to the federal government and does not provide professional engineering or surveying services to the public within the meaning of Ohio Revised Code Section 4733.16.
#J-18808-Ljbffr