No more applications are being accepted for this job
- Position core responsibilities focus on Vulnerability Remediation and Prioritization supporting activities associated with prioritization and remediation of weekly automated scan result findings for all Critical, High and Exploitable Medium findings on all deployed systems as well as coordination with Vulnerability Management division for Cyber Task Order action coordination and response.
- Responsibilities include:
- Collect, review, and consolidate vulnerability and compliance findings across multiple systems / platforms.
- Identify remediation actions, priorities, and schedules in accordance with documented customer guidelines.
- Track, coordinate and/or execute required actions to remediate indicated findings.
- Complete workflow / tracking tool updates
- Track Lien remediation / resolution activities (as appropriate for associated RMF tasks)
- Deploy / Configure / Use automated security tools and applications (ACAS / Active Directory GPO/ SCCM / ServiceNow / HelpNow) to identify vulnerabilities and implement remediation actions as appropriate scan policies / passwords / dashboards / schedules.
- Coordinate / collaborate across internal core service functional areas and external agency stakeholders as directed / required.
- Conduct CCRI/JCIP like self-test activities on contract system portfolio
- Track and execute required actions to respond to / satisfy Cyber Task Orders issued from Vulnerability Management Division (VMD), Defense Information Systems Agency (DISA) and Cybersecurity and Infrastructure Security Agency (CISA).
- Additional functional support areas / growth opportunities with this position include:
- Assessment & Authorization (A&A) and Continuous Monitoring (ConMon) Support Services activities associated with ensuring compliance with all Risk Management Framework (RMF) requirements.
- This includes exposure to and training in:
- Developing and maintaining required Body of Evidence (BoE)
- Tracking and executing required actions to obtain / maintain valid authorizations.
- IATT / ATO w/PoAM submissions
- Stakeholder collaboration
- Workflow / tracking tool updates
- Track Lien remediation / resolution activities
- Ensuring all ConMon activities are executed within documented timelines.
- BoE collection / coordination
- ConMon tracking tool updates.
- Using / configuring / validating additional automated security tools and applications (HBSS / Splunk / UAM)
- Developing and maintaining required Body of Evidence (BoE)
- Experience in system administration
- Patch management
- STIG application
- System configuration on Microsoft Server
- Workstation
- Linux
- VMware platforms
- Cloud / Virtualization experience a plus
- Experience supporting Intelligence &/or DoD Customers
- Recognizing great achievements do not go unnoticed by teKnoluxion through service anniversaries, spot awards, and employee referral bonuses
- Youll join a growing organization of passionate, top-shelf, IT engineering professionals with extensive experience in actively developing the technology revolution in the Intelligence community
- Highlights of our benefits include Health/Dental/Vision, 401(k) match and potential Profit Sharing, Universal Leave, STD/LTD/Life Insurance/Voluntary Life Insurance, Stipends, Referral Bonuses, and more
- Compensation is unique to each candidate and compensation packages are based on education, experience, and other requirements.
Information Systems Security Engineer - Chantilly, United States - teKnoluxion Consulting
Description
Overview:
Responsibilities:
What you get to do every day:
Clearance: Active TS/SCI clearance and a CI poly is required **This position is not open for any clearance upgrades or sponsorship.** Education/Experience: Requires Bachelors Degree in Computer Science or related technical discipline, or the equivalent combination of education, technical certifications or training, and work experience, along with 3+ years of directly related experience. Certification: Must have 8570 IAT II (CCNA Security / CSA+ / CySA+ / GICSP, GSEC, CND, SSCP / Security+CE) or IAM I (CAP / CND / Cloud+ / GSLC / Security+ CE / HCISPP) compliant certification on day 1 Required Skills: