Description
Description
SAIC has an opportunity for a Scanning/Vulnerability Management Analyst (Cybersecurity Specialist-ACAS) to support the US Army Corps of Engineers Revolutionary IT Services (USACE RITS) program.
NOTE: This is a hybrid role, with ~1 day a week onsite in the Washington DC, Vicksburg MS, Little Rock AR or Tulsa OK areas and the other days work from home / virtual / remote position.
The Ideal Candidate will serve as a member of the Assured Compliance Assessment Solution (ACAS) team responsible for operating and maintaining the USCAE ACAS instance.
Overall Duties include:
- Deploy, maintain, and perform tuning of ACAS scanners to meet current and future needs, IAW latest Best Practice Guide and CORA/CCRI requirements
- Develop / create, deploy, and manage ACAS scan configurations IAW ACAS BPG
- Conduct scans and provide detailed reporting to leadership
- Ensures scheduled scans are covering 100% of intended assets and are being run successfully.
- Ensure all ACAS scanners, components and Security Center are operational and reporting properly
- Perform required vulnerability scans and create repositories, queries, and dashboards as necessary to ensure vulnerability report information is available
- Investigate false positives or any invalid scan data results
- Develop tracking mechanism for false positives and track false positives until the finding is corrected; provide results upon resolution
- Upgrade Security Centers and Scanners to the latest DISA-approved version, as well as having the latest patches installed as they are approved and released.
- Continuously monitor the performance and integrity of ACAS, assess scan times, and make changes to improve performance
Qualifications
EDUCATION REQUIREMENTS:
- BS degree and two (2) years or more experience; four (4) years of experience accepted in lieu of degree
EXPERIENCE REQUIREMENTS:
- Scripting or Application programming interface (API) (i.e. PowerShell, Python, etc.)
· Proven experience with security and auditing tools for Windows and Linux operating systems such to include: installing, configuring, maintenance, backups, and restore
- Experience in supporting, configuring, administering Assured Compliance Assessment Solution (ACAS) and/or Nessus
CERTIFICATION REQUIREMENTS:
- Must have one (1) current DoD 8140 Basic Systems Security Analyst certification (i.e. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, OR SSCP)
CLEARANCE REQUIREMENT:
- Active Secret Security Clearance
Apply on company website
Find Connections via Linkedin
