Description

1 mid and 1 sr level opening

The ACAS Systems Operator duties include vulnerability assessment analysis and administration of cybersecurity-oriented principles to protect and defend information systems and networks.

Operates the security and compliance baseline configuration, inventory, and best practices for the vulnerability management solution (VMS) deployed across multiple unclassified and classified network locations supporting the implementation for Tenable products within Assured Compliance Assessment Solution (ACAS) including .SC (SecurityCenter™) and Nessus® scanners; Also 2.0 Architecture Components: Nessus Networking Monitor (NNM), Nessus Manager and Nessus Agents use cases.

 Conducts assessments of threats and vulnerabilities; determines deviations from acceptable configurations, enterprise, or local policy.

 Ability to assess the level of risk, develop or recommend meaningful insights about the context of an organization threat environment to improve its risk management posture; measure effectiveness of systems/networks/endpoints that deviate from acceptable configurations, enclave, or local policy.

 Work in concert with other Tenable operators, integrator, and IA personnel responsible for operating and maintaining the ACAS program in multiple enclaves.

 ACAS Systems Operator coordinates system activities such as deploying, configuring, monitoring, tuning, upgrading, and troubleshooting Tenable components spanning local, and remote locations.

 Set up and execute Tenable Nessus scans, review scan data, assess reports and trends through SC interface; determine whether a completed scan provide valid results, and ensure reports/dashboards meet customer needs and expectations.

 Record configurations, conduct assessments and submit suggestions to scan schedule(s), scanners scan zones, repository management, chart Credentials Assets Scans Reports Dashboards.

 Analyze and document Department Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIGs) applicable to all network environments.

 Responsible for acquiring, configuring, and ensuring external deliverables: DISA/Continuous Monitoring and Risk Scoring (CMRS), importing vulnerability and security audit plug-ins, DoD Patch Repository Defense Asset Distribution System (DADS), build/maintain vulnerability and audit repositories.

 Assist mapping scan zones, scanners, subnets to include leveraging enterprise network application tools such as Forescout, SolarWinds Orion, McAfee Endpoint Security Solutions (ESS) and/or Microsoft Endpoint Configuration Manager (MECM)

 Continuously assesses current ACAS implementations for scans, assets, analysis, and permissions.

 Assist with validation and sustainment of documentation such as System Security Plans, Network Address Declaration (NAD), security groups/roles/permissions and/or zones/credentials/scans.

 Document steps required to design/engineer ACAS systems for each network to include IP address, Fully Qualified Domain Name (FQDN), DNS entries, Role Based Access Controls (RBAC), service accounts, certifications, licenses, and physical/virtual location of each component.

 Create network diagrams of the designs with Microsoft Visio.

 Implement/create report dashboard designs, automated custom email report notifications, report repositories for each environment that are specific to the following audiences: Leadership Executives; Cybersecurity Staff; System Administrators; Application Maintainers

 Ensures networks receive periodic updates from AFCYBER-released software patches, updates, and upgrades via Time Compliance Technical Orders (TCTO), Time Compliance Network Orders (TCNO), Maintenance Tasking Order (MTO) and Notices to Airman (NOTAMs)

 Responsible to assist/troubleshoot schedule scans are covering 100% of intended targets ensuring timely and accurate scanning and reporting per PMO, IA and DoD policies and orders.

 Maintain the Nessus scanners connectivity with the associated Tenable.sc (formerly SecurityCenter)

 Provide cyber security staff scanning capability and system administration continuity.

 Maintain effective communications with other external and internal teams essential to ACAS operations.

 Create/maintain/implement custom security policies in line with DISA ACAS best practice guidance.

 Assist AF Cyber personnel with the DISA Information Assurance Vulnerability Management (IAVM) programs, cybersecurity toolsets, and Operation Order (OPORD)/Fragmentary Order (FRAGO) support.

 Perform systems analysis, design review, integration of complex system applications.

 Ensures external networks receive cybersecurity inventory reporting for compliance data via ACAS to DISA CMRS and DoD Enterprise Logging Ingest and Cyber Situational Awareness Refinery (ELICSAR) Big Data Platform (BDP) and update Plan of Actions, Milestones (POAMs) documentation.

 Participate in all phases of the Vulnerability Management (VM) life cycle with emphasis on the scan, patch, rescan, mitigation factors and reporting phases.

 Assist in the installation/maintenance of configuration files, custom security policies, plug-ins, signatures, certificates, DISA STIGs and checklist configuration audits and other such files necessary to add vulnerability discovery capabilities into the ACAS system.

 Rack and provision government furnished equipment (GFE) servers when applicable.

 Candidate will report to the 26th NOS Information Assurance (IA) team leadership.

 Must be able to push/pull, lift, or carry up to 50 lbs.

 Must be willing to travel up to 5% of the year, dependent on contract needs and requirements that may arise.

 Sr Administrators must possess the ability to supervise a team administratively and technically.

Skills

tenable, acas, rhel

Top Skills Details

tenable,acas,rhel

Additional Skills Qualifications

Day 7-4

Experience Level

Entry Level

Pay and Benefits

The pay range for this position is $30.00 - $42.00

• Medical, dental vision• Critical Illness, Accident, and Hospital• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available• Life Insurance (Voluntary Life ADD for the employee and dependents)• Short and long-term disability• Health Spending Account (HSA)• Transportation benefits• Employee Assistance Program• Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type

This is a fully onsite position in Montgomery,AL.

Application Deadline

This position will be accepting applications until Jan 7, 2025.

About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.