Cyber Security Specialist - Shaw Air Force Base, United States - NANA Regional Corp

    NANA Regional Corp
    NANA Regional Corp Shaw Air Force Base, United States

    1 month ago

    NANA Regional Corp background
    Description

    Overview

    Work Where it Matters
    Akima Systems Engineering (ASE), an Akima company, is not just another federal systems support contractor.

    As an Alaska Native Corporation (ANC), our mission and purpose extend beyond our exciting federal projects as we support our shareholder communities in Alaska.

    At ASE, the work you do every day makes a difference in the lives of our 15,000 Iñupiat shareholders, a group of Alaska natives from one of the most remote and harshest environments in the United States.


    For our shareholders , ASE provides support and employment opportunities and contributes to the survival of a culture that has thrived above the Arctic Circle for more than 10,000 years.

    For our government customers , ASE delivers solutions in maritime IT, systems engineering, and integration across the Department of Defense and stands ready to help improve operational performance at a reasonable and sustainable cost.

    As an ASE employee , you will be surrounded by a challenging, yet supportive work environment that is committed to innovation and diversity, two of our most important values. You will also have access to our comprehensive benefits and competitive pay in addition to growth opportunities and excellent retirement options.


    Job Summary:


    The Cyber Security Specialist shall manage the Host-Based Security System (HBSS) Super-Agent Distributed Repository (SADR) in accordance with Tier 0/1 Computer Network Defense Service Provider (CNDSP) guidance and directives to perform responsibly to monitor, detect, and counter against known cyber-threats to the Department of Defense (DOD) Enterprise by ensuring the HBSS solution is a part of each host (server, desktop, and laptop) in the USARCENT I-CAN (Installation Campus Area Network).

    The employee will provide guidance to the Information System Security Manager (IISSM) for ensuring compliance and serve for all matters relating to HBSS.


    Responsibilities

    Job Responsibilities:

    • Work closely with USARCENT G6, information system owners, and users to ensure secure use and operation of information systems (IS) and networks.
    • Lead information assurance audits to examine potential security violations and determine if any employee has been violated, breached, or circumvented the installation campus area network (I-CAN). Recommend policy changes with industry best practices and provide report to the ISSM.
    • Preserve evidence, as directed, in support of auditing requirements maintaining logging server(s).
    • Review Information System (IS), network audit logs and log files, and report anomalous or suspicious information to the ISSM.
    • Review and verify current user accounts, based upon user access and user logins. Disable, re-enable, and delete user accounts, as required.
    • Manage the Army Enterprise Security Solution (AESS) Super-Agent Distributed Repository (SADR) in accordance with Tier 0/1 Computer Network Defense Service Provider (CNDSP) guidance and directives.
    • Monitor, detect, and counter against known cyber-threats to the Department of Defense (DoD) Enterprise by ensuring the AESS solution is a part of each host (server, desktop, and laptop) in the USARCENT I-CAN.
    • Provide latest guidance to the ISSM for ensuring compliance and serve as the subject matter expert for all matters relating to AESS.
    • Manage the McAfee ePolicy Orchestrator (ePO) by ensuring workstations/servers have the current version software including the McAfee agent, Virus Scan Enterprise (VSE), Host Intrusion Prevention (HIPS); Data Loss Prevention (DLP), Policy Auditor Agent (PAA), and Rogue System Detection (RSD).
    • Administer content and maintain cyber security policy in accordance with Tier 0/1 CNDSP for the web proxy to include implementation of the Master Block List (MBL).
    • Perform duties to EIO&M in accordance with Tier 1 CNDSP directives generated by an enterprise solution as a passive intrusion detection system (IDS), Intrusion Prevention System (IPS), web filter, and malware protection to identify suspicious network traffic and behavior to blocks threats.
    • Monitor, analyze, and detect unauthorized activity on the USARCENT networks. Plan Computer Network Defense (CND) scenarios to secure information and information systems, networks CND incorporates protection, detection, response, restoration, and reaction capabilities to shield and preserve the communications system.
    • Stay-up to-date on all DoD-approved system security tools and products.
    • Diagnose, resolve, and document all network and system security problems in response to security incidents.
    • Scan, monitor, and test network servers, routers, and switches to ensure they comply with security policy, procedures, and technical requirements in conjunction with network and system administrators.
    • Coordinate with the USARCENT G6 network team prior to installing perimeter defense systems including but not limited to intrusion detection systems, firewalls, grid sensors, and network rule sets to block sources of malicious traffic.
    • Assist the ISSM in support of inspections, such as USARCENT Command Cyber Readiness Inspection (CCRI), Department of the Army Inspector General (DAIG) inspections, and Force Protection Assessment Team (FPAT) inspections.
    • Perform all tasks in support of the Information Assurance Vulnerability Management (IAVM).
    • Provide Cybersecurity subject matter expertise to the USARCENT CG, command staff, ISSM and G6 Staff.
    • Identify and correct security anomalies or integrity loopholes such as system weaknesses or vulnerabilities identified.
    • Implement, maintain, and document Cs controls IAW the RMF and other Government accreditation programs.
    • Understand and implement technical vulnerability corrections and specific cyber security countermeasures.
    • Provide support, source data, and analysis required to support the government RMF process in accordance with DoDI
    • Develop all documentation required for RMF process including the authorization registration form, which includes Ports,
    • Protocols, and Services Management (PPSM), DoD IT Portfolio Repository (DITPR), Enterprise Mission Assurance Support Service (eMASS), and Vulnerability Management System (VMS) registration information.
    • Support the utilization of eMASS capabilities for preparation of the RMF Package, as well as asset and vulnerability management capabilities within the VMS. Report 25% of USARCENT controls quarterly in eMASS.
    • Assist in managing elevated accounts for access into information systems to validate Cyber Security certification in accordance with DOD M, Information Assurance Workforce Improvement Program or the DOD Directive (DoDD , Cyberspace Workforce Management or other applicable DoD guidelines.

    Qualifications

    Minimum Qualifications:

    • High School Diploma/GED.
    • Active interim Secret clearance, or higher.
    • Must possess an active CompTIA Security CE certification.

    Desired Qualifications:

    • High school diploma (or higher) with at least one (1) year of experience in cyber security and/or information assurance.
    • Working knowledge of Army Enterprise Security Solution (AESS), Assured Compliance Assessment Solution (ACAS), Network Access Control (NAC), Army Training and Certification Tracking System (ATCTS), Active Directory (AD) and Remedy Ticketing System/ITSM.
    • Prior work experience at the Theater Army level, and a thorough understanding of Army information security, networks and systems, how to execute, organize, and evaluate IT security through routine audit requirements in a proper manner.
    We are an equal opportunity employer and comply with all applicable federal, state, and local fair employment practices laws.

    All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law.

    If you are an individual with a disability, or have known limitations related to pregnancy, childbirth, or related medical conditions, and would like to request a reasonable accommodation for any part of the employment process, please contact us at job- or information about job applications status is not available at this contact information).


    Job: Information Technology


    Travel: None


    Organization: ASE - Akima Systems Engineering


    Clearance: SECRET


    Work Type: On-Site


    Remote: No


    ReqID: