General Dynamics Information Technology Vulnerability Assessments - ACAS- TS/SCI-Tampa, FL in MacDill AFB, Florida
Mission Statement: Conducts assessments of threats and vulnerabilities, determines deviations from acceptable configurations enterprise or local policy, assesses the level of risk, and develops and/or recommends appropriate mitigation countermeasures in operational and non-operational situations.
Provide Customer facing Website (Sharepoint..) for Vulnerability Management information.
Maintain an accessible STIG library on DOD network (Sharepoint…)
Review and monitor USCYBERCOM for TaskOrds, OPORDS and other taskings.
Update website with USCYBERCOM order requirements and DOD customers Status of Compliance.
Provide Task orders to appropriate offices for their action. Coordinate with IA/ISSM for deadline, and ensure responsible office has this information. Create a tacking method to ensure USBICES Compliance.
Review ACAS Scans, and ensure End office has information to ensure patch suspense are being met.
Monitor the patching progress thru ACAS and identify to appropriate Tech OPs teams as new vulnerabilities are detected and old vulnerabilities that need remediated.
Run ACAS Scan and other Audit tools to ensure compliance with USCYBERCOM Orders are met.
Analyze organization's computer network defense (CND) policies and configurations and evaluate compliance with regulations and organizational directives
Conduct and/or support authorized penetration testing on enterprise network assets
Maintain deployable computer network defense (CND) audit toolkit (e.g., specialized computer network defense [CND] software/hardware) to support computer network
defense (CND) audit missions
Maintain knowledge of applicable computer network defense (CND) policies, regulations, and compliance documents specifically related to computer network defense (CND) auditing
Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions
Perform technical (evaluation of technology) and non-technical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, and supporting infrastructure)
Assist with the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes)
Must be DOD 8570 CND-IS with in 90 days of hire
Must possess and maintain a US TS/SCI Security Clearance
Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
5-8 years of related experience in data security administration.
Comprehensive knowledge of data security administration principles, methods, and techniques.
Certification for DOD 8570 CND Analyst
Requires familiarity with domain structures, user authentication, and digital signatures.
Requires understanding of firewall theory and configuration.
Requires understanding of DHS/DoD policies and procedures, including FIPS 199, FIPS 200, NIST 800-53, DHS 4300A SSH and other applicable policies.
For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
Number of Positions1
Job FunctionInformation Technology
Security Clearance LevelTop Secret/SCI
Full/Part TimeFull Time