SAIC
Description
SAIC has an opportunity for an ACAS Vulnerability Management Specialist
to support theUS Army Corps of Engineers Revolutionary IT Services (USACE RITS) program.
NOTE: This is a hybrid role, with ~1 day a week onsite in the Washington DC, Vicksburg MS, Little Rock AR or Tulsa OK areas and the other days work from home / virtual / remote position.
The Ideal Candidate will serve as a member of the Assured Compliance Assessment Solution (ACAS) team responsible for operating and maintaining the USCAE ACAS instance.
Overall Duties Include:
Deploy, maintain, and perform tuning of ACASscanners to meet current and future needs, IAW latest Best Practice Guide and CORA/CCRI requirements
Develop / create, deploy, and manage ACASscanconfigurations IAW ACAS BPG
Conductscansand provide detailed reporting to leadership
Ensures scheduled scans are covering 100% of intended assets and are being run successfully
Ensure allACASscanners, components and Security Center are operational and reporting properly
Perform requiredvulnerabilityscansand create repositories, queries, and dashboards as necessary to ensurevulnerabilityreport information is available
Investigate false positives or any invalidscandata results
Develop tracking mechanism for false positives and track false positives until the finding is corrected; provide results upon resolution
Upgrade Security Centers and Scanners to the latest DISA-approved version, as well as having the latest patches installed as they are approved and released
Continuously monitor the performance and integrity of ACAS, assess scan times, and make changes to improve performance
Qualifications Education Requirements:
BS degree and two (2) years or more experience; four (4) years of experience accepted in lieu of degree
Experience Requirements:
Scripting or Application programming interface (API) (i.e. PowerShell, Python, etc.)
Proven experience with security and auditing tools for Windows and Linux operating systems such to include: installing, configuring, maintenance, backups, and restore
Experience in supporting, configuring, administering Assured Compliance Assessment Solution (ACAS)and/or Nessus
Certification Requirements:
Must have one (1) current DoD 8140 Basic Systems Security Analyst certification (i.e. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, OR SSCP)
Clearance Requirement:
Active Secret Security Clearance
#J-18808-Ljbffr
to support theUS Army Corps of Engineers Revolutionary IT Services (USACE RITS) program.
NOTE: This is a hybrid role, with ~1 day a week onsite in the Washington DC, Vicksburg MS, Little Rock AR or Tulsa OK areas and the other days work from home / virtual / remote position.
The Ideal Candidate will serve as a member of the Assured Compliance Assessment Solution (ACAS) team responsible for operating and maintaining the USCAE ACAS instance.
Overall Duties Include:
Deploy, maintain, and perform tuning of ACASscanners to meet current and future needs, IAW latest Best Practice Guide and CORA/CCRI requirements
Develop / create, deploy, and manage ACASscanconfigurations IAW ACAS BPG
Conductscansand provide detailed reporting to leadership
Ensures scheduled scans are covering 100% of intended assets and are being run successfully
Ensure allACASscanners, components and Security Center are operational and reporting properly
Perform requiredvulnerabilityscansand create repositories, queries, and dashboards as necessary to ensurevulnerabilityreport information is available
Investigate false positives or any invalidscandata results
Develop tracking mechanism for false positives and track false positives until the finding is corrected; provide results upon resolution
Upgrade Security Centers and Scanners to the latest DISA-approved version, as well as having the latest patches installed as they are approved and released
Continuously monitor the performance and integrity of ACAS, assess scan times, and make changes to improve performance
Qualifications Education Requirements:
BS degree and two (2) years or more experience; four (4) years of experience accepted in lieu of degree
Experience Requirements:
Scripting or Application programming interface (API) (i.e. PowerShell, Python, etc.)
Proven experience with security and auditing tools for Windows and Linux operating systems such to include: installing, configuring, maintenance, backups, and restore
Experience in supporting, configuring, administering Assured Compliance Assessment Solution (ACAS)and/or Nessus
Certification Requirements:
Must have one (1) current DoD 8140 Basic Systems Security Analyst certification (i.e. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, OR SSCP)
Clearance Requirement:
Active Secret Security Clearance
#J-18808-Ljbffr