- Responsible for the Security Posture of the application/system via Verification
- Performing SCAP (Evaluate STIG, Tenable Nessus, etc.)
- NSWC IHD is not responsible for scanning via SCAP
- Performing manual reviews via DISA STIGs/SRGs, etc. (completing the finding details/comments section)
- Writing mitigations for open Vulnerabilities
- Remediating open Vulnerabilities
- Assessing the SAs with Security solutions to remediate Vulnerabilities
- Updating/Creating POA&M/RAR
- Creating/Updating the Authorization Boundary, Architectural Diagram, and Information Flow Diagram (NQV will leverage this information when completing the SAP)
- Completing the Hardware and Software List (NQV will leverage this information when completing the SAP)
- Updating Implementation Plan, Security Controls/APs/CCIs and anything WRT the RMF/RMF AO package
- Ensuring the verbiage for the responses addresses the Security Controls/APs/CCIs.
- If referencing documentation, ensure the document, page number, section, etc. is mentioned
- Technical planning and systems engineering to ensure IA compliance and the cyber posture with respect to availability, integrity, authentication, confidentiality, and non-repudiation of critical system information.
- Provide ACAS scanning and STIG compliance checks on various standalone and networked systems.
- Apply software patches and patch sets and upgrade software to network systems, and perform regression testing to ensure upgrades and patches have not corrupted the system.
- Technical and Network Engineering services across systems life cycle.
- Provide decision analysis, evaluation of alternatives and design and test support.
- Technical engineering services, implementing disciplined and rigorous System Engineering and Network Engineering processes.
- Day-to-day cybersecurity operations and maintenance of information technology (IT) resources including network support, server support, and policy development and enforcement.
- Conduct DoD mandated cybersecurity scans and compliance checks on various networks/systems.
- Defense Information System Agency (DISA) Assured Compliance Assessment Solution (ACAS) scans.
- DISA Security Technical Implementation Guide (STIG) compliance checks.
- Conduct Security Content Automation Protocol (SCAP) scans for automated STIG checks as required for validation of compliance for Navy Authorizing Official (NAO).
- Perform software updates to systems.
- Apply software patches and patch sets during maintenance windows.
- Includes operating system (OS) patches released from DISA and available ton DISA's patch repository website.
- Upgrade software.
- Conduct regression testing to ensure upgrades/patches have not corrupted the system.
- Apply software patches and patch sets during maintenance windows.
- Provide analytical and technical security recommendations to other team members.
- Report any breaches of cybersecurity policies to the Information System Security Manager (ISSM) and director of the facility (i.e. unauthorized devices).
- Track security baselines and attend configuration control board (CCB) meetings dealing with infrastructure/network upgrades, including major and minor hardware/software that will potentially affect the baseline that is approved.
- Develop documentation to support ongoing system security operations, maintenance and specific problem resolution.
- Develop and update Plan of Actions and Milestones (POA&M) based off of the ACAS, SCAP and STIG artifacts for continuous monitoring assessments.
- 5 years with BS/BA; 3 years with MS/MA; 0 years with PhD
- Minimum certification as 541 (or similar as required by the Technical Instruction) at the Intermediate level per DoDD , or successor.
- All persons performing as Privileged Users are required to have and maintain a final adjudicated Tier 5 security investigation with an IT level-1 designation in Joint Personnel Adjudication System (JPAS) and/or Defense Information System for Security (DISS).
- Required Experience:
- Shall have a minimum of five (5) years of cybersecurity experience in performing system hardening.
- Shall have demonstrated experience with performing STIG implementation.
- Shall have demonstrated experience performing vulnerability assessments with the Assured Compliance Assessment Solution tool.
- Shall have demonstrated experience remediating vulnerability findings to include implementing vendor patches on both Linux and Windows Operating systems.
- Must have an active TS/SCI
- Travel up to 25%
- Work is onsite in Dam Neck (Virginia Beach, VA).
-
Peraton Virginia Beach, United States Full timeResponsibilities · Peraton is seeking qualified individuals to join our team to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in Virginia Beach, Virginia. This includes conducting Agile so ...
-
System Administrator Support Technician
3 weeks ago
AERMOR Virginia Beach, United StatesExperience: 3+ YearsClearance: SecretAERMOR LLC is seeking subject matter expertise and expert guidance to provide System Administrator support in maintaining, configuring and troubleshooting various Microsoft, Red Hat Linux (RHEL 8), and Operating System products included in app ...
-
Cybersecurity Specialist III
2 weeks ago
Marathon TS Virginia Beach, United StatesCybersecurity Specialist Level III (Active TS with SCI eligibility) · Marathon TS is looking for a Cybersecurity Specialist to support efforts with the USAF at the Pentagon. The Cybersecurity Specialist responsible to ensures the confidentiality, integrity, and availability of i ...
-
Remote Fully Qualified Navy Validator
6 days ago
Watershed Security Virginia Beach, United StatesJob Description · Job DescriptionCOMPANY OVERVIEW · Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment ...
-
Engineer (Hybrid) - Virginia Beach, VA
2 weeks ago
VetJobs Virginia Beach, United StatesJob Description · ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spou ...
-
Cybersecurity Specialist, Level III
2 weeks ago
Innovative Management & Technology Services Virginia Beach, United StatesCompany Overview: · Join a fast-growing company highly experienced in cyber security, cloud computing, virtualization, big data analytics, and project management IMTS offers competitive compensation, excellent benefits including tuition reimbursement and employer-contributed 401 ...
-
RMF Cyber Security Analyst
3 weeks ago
Delaware Nation Industries Virginia Beach, United StatesOverview · Delaware Nation Industries is supporting the Naval Surface Warfare Center Dahlgren Division Dam Neck Activity (NSWCDD DNA). We will be providing enterprise management and technical support of the Naval Surface Warfare Center Dahlgren Division Dam Neck Activity (NSWC D ...
-
Engineer (Hybrid)
2 weeks ago
Akima Virginia Beach, United StatesOverview · Work Where it Matters · Akima Systems Engineering (ASE), an Akima company, is not just another federal systems support contractor. As an Alaska Native Corporation (ANC), our mission and purpose extend beyond our exciting federal projects as we support our shareholder ...
-
Information Security Manager III
1 week ago
Gridiron IT Virginia Beach, United StatesGridiron IT is seeking an Information Security Manager local to Arlington, VA. to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract person ...
-
security analyst
6 days ago
Navy Exchange Service Command Virginia Beach, United StatesServe as a Senior Information Security Analyst Alternate ISSM with responsibility of developing maintaining and supporting NEXCOMs Information Assurance program and associated security controls within the NEXCOM Enterprise environment. Perform security assessments and associated ...
-
Lockheed Martin Corporation Virginia Beach, United StatesJob ID: 665282BR · Date posted: Apr. 25, 2024 · Description:Seeking experienced System Administrator to support the Space fence radar operations site located at Sensor Site (SS) 1 on Kwajalein Atoll. · Tasking includes performing mission operations, computer maintenance and re ...
-
Cybersecurity Engineer 3
2 weeks ago
Data Intelligence, LLC Virginia Beach, United StatesData Intelligence, LLC (DI) is searching for a full time Cybersecurity Engineer 3 . This position is fully on-site in Virginia Beach, VA. · Expected Tasks and Expertise Areas: · Responsible for the Security Posture of the application/system via Verification · Performing SCAP ( ...
-
Peraton Virginia Beach, United States Full timeResponsibilities · Peraton is seeking qualified individuals to join our team to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in Virginia Beach, Virginia. · This includes conducting Agile ...
-
Information System Security Specialist 2
1 week ago
Data Intelligence Virginia Beach, United StatesData Intelligence (DI) is looking for a qualified candidate for our Information System Security Specialist position in Virginia Beach, VA (NSWCDD) area. This is an onsite position. · Job Responsibilities · Long-term project working as a member of the large-scale Cybersecurity E ...
-
Peraton Virginia Beach, United StatesResponsibilities: · Peraton is seeking qualified individuals to join our team to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in Virginia Beach, Virginia. · This includes conducting Agi ...
-
Information Systems Security Specialist III
1 week ago
Imagine One Virginia Beach, United StatesInformation Systems Security Specialist III · Imagine One Technology Virginia Beach, VA (Onsite) Contractor · Job Title: Information System Security Specialist III · Job Location: Virginia Beach, Virginia · Job Code: · Imagine One is always seeking "contingent" candidates for po ...
-
Information Systems Security Specialist III
1 week ago
Imagine One Virginia Beach, United StatesJob Title: Information System Security Specialist III · Job Location: Virginia Beach, Virginia · Job Code: · Imagine One is always seeking "contingent" candidates for positions supporting the U.S. Navy at Naval Surface Warfare Center Dahlgren Division (NSWCDD). We are loo ...
-
Information System Security Specialist 2
1 week ago
Data Intelligence Virginia Beach, United StatesData Intelligence (DI) is looking for a qualified candidate for our Information System Security Specialist position in Virginia Beach, VA (NSWCDD) area. This is an onsite position.Job ResponsibilitiesLong-term project working as a member of the large-scale Cybersecurity Engineeri ...
-
Information System Security Specialist 2
2 weeks ago
Data Intelligence Virginia Beach, United StatesData Intelligence (DI) is looking for a qualified candidate for our Information System Security Specialist position in Virginia Beach, VA (NSWCDD) area. This is an onsite position. · Job Responsibilities · Long-term project working as a member of the large-scale Cybersecurity E ...
-
Certified Navy Qualified Validator
5 days ago
Cybrex LLC Norfolk, United StatesResponsibilities/Knowledge/Skills: · - Experience Auditing and building RMF A&A packages including scanning for both classified and unclassified operational technology and Information Technology (IT) systems. · - Understanding of SCADA theory, operation and programming · - Perfor ...
Cyber Security Engineer 3 with RMF/ATO Expertise - Virginia Beach, United States - Peraton
Description
Responsibilities
Peraton is seeking qualified individuals to join our team to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in Virginia Beach, Virginia. This includes conducting Agile software engineering in a Development, Security, and Operations (DevSecOps) environment, performing Cloud architectural design, operation, and administration functions, and cyber security and Risk Management Framework (RMF) support. Also included are rapid design, development, test, deployment, maintenance and operation of specific software and hardware capabilities to meet current Cyber Defensive needs.
Peraton has an opportunity for Cybersecurity Engineer 3 with RMF/ATO Expertise
Qualifications
Required Degree/Certification:
Peraton Overview
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit to learn how we're keeping people around the world safe and secure.