The candidate shall provide cybersecurity testing support to RMF/NIST standards, using automated and manual tools ACAS, SCAP, STIG Viewer, Nessus, DISA STIGs, SRGs, Vulnerator, etc. to obtain and maintain Assessment and Authorization (A&A) of fielded systems and systems in development under RMF guidelines. Information assurance security engineering and testing support is in support of Naval Information Warfare Center programs. Previous experience conducting DoD Independent Verification and Validations (IV&V) or as a Security Control Assessor (SCA) would be ideal and is in alignment with the stated job duties.
- Strong verbal and written communication skills. - US citizen and possess a DoD SECRET clearance - DoD 8570.1-M IAT Level II requirements (Security+) - Five (5) years in support of Command & Control (C2) and/or Intelligence, Surveillance, and Reconnaissance (ISR) Platforms computer system experience to include: Design, Development, Test and Evaluation, Network Protocols, LAN administration fundamentals, and UNIX and Windows based operating system. - Experience in performing vulnerability testing and using DoD approved tools (Nessus ACAS, SCAP, STIG Viewer, Vulnerator, HBSS, etc.) - Experience evaluating systems utilizing the NIST SP 800-53 - Experience with the A&A process and with DIACAP/RMF package documentation. - Experience with Linux, Redhat and/or UNIX required - Experience with Windows and Networking required
This position requires a Secret US DoD security clearance.
- Vendor/platform specific certification, e.g., Microsoft Certified Solutions Developer (MCSD), Microsoft Certified Applications Developer (MCAD), Microsoft Certified Database Administrator (MCDBA), Red Hat Certification Program (RHCP), CISCO Certified Network Professional (CCNP), Oracle Certified Professional (OCP). - Linux/Unix/Solaris experience as well as DoD RMF process. - Bachelor’s degree in a related IT or security field.