ACAS Engineer

Security Clearance: Active TS clearance, SCI eligible

Location: Linthicum Heights, MD (full-time on-site)

Job Type: Full-Time

Target Salary Range*: $132,000 - $165,000.

*This represents the potential salary range for this position depending on education level, years of experience and/or certifications in addition to other position specific requirements which may impact salary

Key Responsibilities:

• Develop implementation, guidance, best practice information, schedules, and detailed product feature specifications to support integration of ACAS enterprise servers and services.
• Provide solution engineering to ensure systems and components meet current and future standards.
• ACAS Administration.
• Conduct testing of new ACAS technologies and create documentation to meet suspense dates.
• Provide performance tuning to systems and investigate issues with Tenable spanning a large and complex environment.
• Deploy, maintain, and perform tuning of Tenable scanners to meet current and future needs.
• Develop, create, deploy, and manage Tenable scan configurations to support scanning services to global enterprise.
• Ensure that the ACAS scanners and Security Center are operational and reporting properly.
• Assist customers in resolving ACAS issues, make recommendations as needed.
• Perform recurring vulnerability scans and create repositories, queries, and dashboards as necessary to ensure vulnerability report information is available.
• Investigate false positives or potentially confusing scan data results.
• Update and maintain tracking mechanism for false positives and track false positives until the finding is corrected; provide results upon resolution.
• Create/Update all documentation needed to support the ACAS teams requirements, taskings, deliverables, and maintenance of the ACAS solution.
• Install and configure updates to Tenable software as released and in compliance with STIG requirements.
• Perform site-specific Tier II support such as risk mitigation activities as part of change/configuration management to ensure smooth implementation and transition to ACAS.
• Support the research and analysis of DoD and AF policies and tasking orders to mitigate implementation problems that may impact the ACAS implementation.
• Create, modify, maintain, or provide input for supporting documentation to include, but not limited to system design specifications, diagrams, ports and protocols reports, implementation plans, process guides, security impact assessments, risk analysis, milestone forecasting, testing procedures, use cases, compliance documentation, eMASS and RMF support.
• Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic finding.
• Strong analytical and troubleshooting skills.
• Non-Domain joinable device scanning.

Qualifications:

Education:

• Bachelor’s degree with 5+ years of relevant experience, or Master’s with 3+ years of relevant experience. The degree should be in one of the following fields: Computer Science, Cybersecurity, Data Science, Information Systems, Mathematics, Software Engineering, or Information Technology. In lieu of a degree in one of these fields of study, 4 years of additional relevant experience or specialized training may be accepted.
  

Experience:

• 8+ years of IT related experience preferred.
• 4-6 years Red Hat experience in a DoD enterprise network environment.
• 4-6 years of experience with Assured Compliance Assessment Solution (ACAS).
• RHCSA / Linux+ / Solaris, DISA ACAS 5.x preferred.

Skills:

• Skills and expertise in the following technologies: SQL/XSQL Server Administrator (SA), MAC O/S and security, Information Assurance (IA), IP Data Networking and Vulnerability Assessment product engineering and design, REM 3.X/Retina 5.X and greater.
• Implementing National Institute of Standards and Technology (NIST) and RMF standards and framework.
• Experience running ACAS on Red Hat Enterprise Linux (RHEL).
• Hands-on experience with general RHEL administration and troubleshooting.
• Demonstrated experience with multiple network security zones, subnetting, VRFs, and VLANs.

Certifications:

• Active CompTIA Security+ certification (must attached a copy of the certification)