Abacus Technology is seeking a Vulnerability Assessment/ACAS Security Manager to provide security and information assurance support for the Air Force Intranet Control (AFINC) III Support program at Maxwell AFB/Gunter Annex. This is a full-time position.
Responsibilities Perform assessments of system and network and identifies where the system/network deviate from acceptable configurations, DoD policy, or local policy/guidelines.Measure effectiveness of defenseāin-depth architecture against known vulnerabilities using available tools within organization to find them.Analyze, prioritize, and mitigate vulnerabilities to lower or eliminate risk.Create reports to effectively communicate to government problems and proposed solutions.Actively manage (inventory, track, and request corrective action) all hardware devices on network that only authorized devices are given access and ensure unauthorized and unmanaged devices are found and prevented from gaining access.Manage (inventory, track, and correct) all software on the network so that only authorized software is installed and can execute, and ensure unauthorized and unmanaged software is found and prevented from installation or execution.Submit tickets to appropriate teams for corrective actions.Conduct/review/validate vulnerability scans.Perform vulnerability scans to include analysis of results, identification of false positives, exceptions, and subsequent POA&Ms and/or MFRs creation, monitoring and reporting to include POA&M status and contributions to Monthly and Quarterly reports.Collect and review data gathered from a variety of tools (including intrusion detection system alerts, firewall, network traffic logs, and host system logs) to analyze events for possible attacks that occur within the environment.Validates, investigates, and analyzes all response activities related to cyber incidents.Support creating and maintaining incident tracking information; planning, coordinating, and directing recovery activities; and incident tracking information; and incidents analysis tasks, including examining all available information and supporting evidence of artifacts related to an incident or event.Perform assessments of systems and networks within the network environment or enclave and identify where those systems and/or networks deviate from acceptable configurations, enclave policy, or local policy. Qualifications5+ years experience in a cyber security or information assurance role. HS diploma or GED. Must be Security+ certified. Must have participated in training for DISA ACAS Supervisor and Operator and DISA Forescout Comply to Connect (C2C) Certified Administrator (FSCA). Experience utilizing security relevant tools to include: NESSUS, ACAS, DISA STIGs, Audit Tools, Forescout, and ESS. Outstanding communication skills across all levels of the organization. Must be a US citizen and hold a current Top Secret clearance with SCI access (TS/SCI).
Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.
EOE/M/F/Vet/Disabled
Options Apply for this job onlineApplyShareEmail this job to a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Application FAQsSoftware Powered by iCIMS
www.icims.com