Requires US Citizenship Yes
Employment Term and Type: Regular, Full Time
Required Security Clearance: TS/SCI
Required Education: Bachelor’s degree or equivalent experience
Salary Band $155,000 to $175,000
This position qualifies for sign-on bonuses and relocation reimbursement
Job Description:
Implement, integrate, test, and deploy enterprise-wide functional tools and capabilities for NAVINTEL IA to meet Intelligence Community Directive (ICD) 502, “Integrated Defense of the IC Information Environment” and Intelligence Community Standard (ICS) 502-2, “Host Based Security” requirements related to vulnerability scanning and IC IE host security; implement Assured Compliance Assessment Solution (ACAS ) tool for network monitoring, network vulnerability identification and remediation, and network security compliance for the NAVINTEL IA enterprise; and implement Host Based Security System (HBSS ) tool to detect, prevent, and report anomalous or noncompliant activity of IC IE enterprise hosts; and further automate and gain efficiencies in business processes and workflow related to ACAS and HBSS for NAVINTEL IA’s defense of their portion of the IC IE/ITE.
Primary Duties and Responsibilities
- Provide support in the areas identified below for the ACAS system and other ICD-502 related tools where applicable:
- Implement and install ACAS (Nessus scanners and Security Centers) on NAVINTEL networks and shall establish Security Centers (command centers) ashore; this includes planning, delivery, installation, security hardening, configuration, integration, and testing the new ACAS system and its components for the Naval IC IE at various Navy locations worldwide.
- Provide Subject Matter Expert (SME) level support to define, analyze, implement, secure, test, and deploy new requirements and enhancements for network monitoring, network vulnerability identification and remediation, and network security compliance.
- Provide expert level program management guidance and recommendations, planning, implementation, training, and execution of enterprise support for ACAS and other ICD-502 related tools. Guidance shall include recommendations for best practice configuration of ACAS organizations, scan repositories, asset lists, scan profiles, etc. based on the Navy IC IE.
- Assist with automation and implementation of periodic vulnerability reporting from ACAS to other organizations in accordance with (IAW) NAVINTEL IA and Office of National Director of Intelligence (ODNI) reporting requirements.
- Coordinate with NAVINTEL IA personnel to upgrade and enhance ACAS using the latest software releases, Plugins, and mission enabling configurations as they become available.
- Support installation, configuration, and testing of new software releases in both an unclassified development environment and the operational environment as directed by the Government. Upon completion of functional testing, the candidate shall deliver a test report that documents test results.
Required Qualifications
- Five years of experience working with the ACAS software components (Tenable.SC/SecurityCenter, Nessus Scanner, Nessus Manager, Nessus Network Monitor), performing functions including:
- Configuration of discovery, vulnerability and compliance scans
- Validation of correct scan execution, and automated reporting of same
- Review of discovery scan results to identify systems not being vulnerability scanned, and automated reporting of same
- Review of vulnerability scan results to identify, troubleshoot and resolve credential and other common scan issues, and automated reporting of same
- Review and compilation of scan results to support asset inventory requirements, and automation of same
- Assessment of scan results to identify areas where vulnerability remediation has the greatest impact (improvement) to risk, and automated reporting of same
- Configuration of ACAS components to align with DISA Best Practice Guidance (or vendor best practice guidance, and sufficient knowledge to understand and align with DISA guidance once known)
- Troubleshooting and resolution of communication issues between ACAS software components, failed plugin updates, and other common software issues
- Automated reporting to external organizations via built-in publishing feature, and troubleshooting of same
- Installing ACAS software components to RHEL systems and troubleshooting issues
- Five years of experience administering Red Hat Enterprise Linux, the ACAS host operating system, to include:
- Building, patching, and configuring RHEL systems (RHEL 7/8) to meet STIG requirements
- Configuring DNS, NTP, and network settings to support ACAS installation
- Performing backups and restore of system OS and installed software if necessary
- Security+ Certification is required.
Desired Qualifications
Education Requirements
- Bachelor’s degree in an IT related field (or three years of additional relevant experience)
Security Clearance Requirements:
Physical Requirements:
- Sitting 70% Standing 30%, Climbing 0%, Walking 10%, Lifting up to 50lbs 0%, Pulling/Pushing up to 50lbs 5%, Carrying up to 25lbs 10%, Grasping 5%, Stooping or Crouching 5%, Crawling on hands and knees 0%, Reaching 10%, Near Acuity, Color Determination 100%, Speaking with customers 50%, Listening 50%, Sight 100%, Use of Hands/Fingers 90%
- Travel CONUS and OCONUS 5%
- Exposure to outside environments (cold/heat/wind/humidity) 5%
- Exposure to noise sufficient to cause the need for shouting to be heard 10%
- Exposure to hazards cush as proximity to moving mechanical parts, moving vehicles, electrical current, chemicals 5%
Supervisory duties - None
This position description is not intended as, nor should it be construed as, exhaustive of all responsibilities, skills, efforts or working conditions associated with this job. This and all positions are eligible for organization-wide transfer. Management reserves the right to assign or reassign duties and responsibilities at any time.
Company Overview: FGS, LLC is an international, leading-edge provider of technical services to include Secure Information Systems, Security and Engineering and Intelligence Analysis. Our turn-key solutions include the design, engineering, deployment operations, and sustainment of secure technology and critical infrastructure for the protection and safety of our customers' mission-critical information, processes, and personnel. Demonstrating an unyielding commitment to our customers, superior trust and dedication with our partners, and leading edge technical expertise over the past seven years, FGS has experienced explosive growth providing superior services through the world, from North America and the Pacific Rim to the Middle East and Europe.
FGS provides secure, leading edge technology and process management services to military, government, and commercial clients worldwide.
FGS offers a generous compensation package including health, dental, vision, 401(k), group life insurance, educational reimbursement, among other benefits.
We value our employees and strive to offer many opportunities for professional growth.
#cjpost
FGS, LLC is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status, and will not be discriminated against on the basis of disability.
FGS Careers
113 Howard St., Suite 301
La Plata, MD 20646