More jobs:
Job Description & How to Apply Below
Overview
DecisionPoint seeks an Intermediate Information Assurance Engineer to support cybersecurity, compliance, and risk management activities for Global Information Technology Support Services supporting the Military Surface Deployment and Distribution Command (SDDC) Deputy Chief of Staff for Information Management (G6). This position supports the protection, monitoring, assessment, and compliance of SDDC information systems and enterprise IT environments.
The Intermediate Information Assurance Engineer will support Risk Management Framework activities, vulnerability management, STIG compliance, POA&M tracking, incident reporting, cybersecurity documentation, and compliance monitoring across SDDC systems. The role requires experience supporting secure DoD environments and working with cybersecurity tools and processes such as eMASS, ACAS, Nessus, SCAP, STIGs, RMF artifacts, Cyber Tasking Orders, and vulnerability reporting.
This position is located at HQ SDDC, Scott Air Force Base, Illinois.
Note: By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid.
Duties & Responsibilities
The Intermediate Information Assurance Engineer will:
- Support cybersecurity and information assurance activities for SDDC information systems, networks, and business systems.
- Assist with RMF documentation, package development, assessment support, and authorization activities for SDDC systems.
- Update and maintain cybersecurity documentation in eMASS to support current system authorization status, control implementation, and compliance tracking.
- Support development and maintenance of RMF artifacts, including security plans, POA&Ms, security design documentation, assessment materials, and supporting technical documentation.
- Assist with vulnerability management activities, including review of ACAS, Nessus, SCAP, and other security scan results.
- Analyze vulnerability findings and support coordination with system administrators, technical teams, ISSOs, ISSMs, and Government stakeholders to identify remediation actions.
- Support preparation of vulnerability reports, compliance reports, and POA&M updates for open vulnerabilities and IAVM-related findings.
- Monitor STIG compliance for assigned systems and assist with review, validation, documentation, and tracking of STIG findings.
- Ingest or associate STIG findings with applicable RMF controls and assist with maintaining audit-ready compliance documentation.
- Support Cyber Tasking Order tracking, compliance discovery, reporting, and coordination with designated points of contact.
- Assist with firewall, list, PPSM, and other cybersecurity compliance reviews, as required.
- Support incident response and reporting by assisting in the review of anomalous or suspicious activity, researching potential incidents, and coordinating response actions with the ISSO or ISSM.
- Assist with response, containment, eradication, and recovery activities for confirmed security incidents in accordance with SDDC, USTRANSCOM, NETCOM, and DoD procedures.
- Support administration, configuration, reporting, and maintenance of cybersecurity tools such as ACAS, HBSS, Ness Security Center, Solar Winds SEM, Log Rhythm, McAfee Network Security Manager, IDS sensors, or comparable tools.
- Maintain accurate records, reports, trackers, and technical documentation to support audits, inspections, assessments, and Government reporting requirements.
- Ensure assigned cybersecurity activities comply with applicable DoD, Army, USTRANSCOM, SDDC, RMF, STIG, and information assurance requirements.
Clearance Requirement:
- Must hold an active Secret clearance.
- Must be eligible to obtain and maintain required Common Access Card (CAC), facility access, system access, and Government network access.
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or related technical discipline.
- Minimum 5 years of experience supporting cybersecurity, information assurance, RMF, vulnerability management, or compliance activities within DoD or federal environments.
- Experience supporting RMF authorization activities, cybersecurity documentation, control assessment, and compliance reporting.
- Experience using or supporting eMASS for RMF package management, control documentation, POA&M tracking, and authorization support.
- Experience reviewing vulnerability scan results and supporting remediation tracking using tools such as ACAS, Nessus, SCAP, or comparable DoD-approved scanning tools.
- Experience supporting DISA STIG review, compliance validation, audit preparation, and finding remediation.
- Experience developing, updating, and tracking POA&Ms for cybersecurity findings, RMF controls, IAVMs, or vulnerability management activities.
- Experience supporting incident response, suspicious activity reporting, compliance reporting, and coordination with ISSO, ISSM, or cybersecurity leadership.
- Knowledge of DoD…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×