The TS/SCI cleared
ACAS Administrator shall support the Client in the design and implementation of Assured Compliance Assessment Solution (ACAS) for the client's networks. The Administrator will train operators and Information Assurance personnel to maintain and operate ACAS tool functionality.
This is a mid-to-senior level role requiring demonstrated leadership in vulnerability management operations within DoD environments and will require to perform job duties onsite at
Langley Air Force Base, VA. Roles and Responsibilities- Assess current ACAS implementations for each network and recommend improvements to scanning coverage, architecture, and policy configuration.
- Document the design of the ACAS solution for each network.
- Lead and guide team members in troubleshooting and resolving operational issues within the ACAS environment.
- Develop reporting dashboard designs and reports tailored for three audiences: Leadership; Cybersecurity Staff; and System Administrators.
- Generate, analyze, and present vulnerability assessment reports and risk mitigation updates to and ISSMs/ISSOs.
- Ensure networks receive timely updates from the DISA/DoD Patch Repository or Tenable; implement and track IAVA compliance.
- Implement reporting dashboard designs and generate environment-specific compliance and vulnerability reports.
- Verify scheduled scans achieve required coverage of intended assets and complete successfully; remediate scan failures.
- Maintain Nessus scanner, Nessus Agents, Nessus Network Monitor, and PVS connectivity with the associated Security Center (SC) across Linux and Windows environments.
- Create and manage ACAS organizations, repositories, and scan zones; import, upload, and validate scan results.
- Coordinate with ISSMs, ISSOs, system owners, and administrators to drive vulnerability remediation efforts and track POA&M items.
- Ensure ACAS operations remain compliant with DoD security policies and DISA STIGs.
Basic Qualifications:- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field - or additional years of equivalent hands-on experience will be considered in lieu of a degree.
- Active DoD Top Secret/SCI clearance required.
- Active DoD 8570/8140 IAT Level III or IAM Level II certification: CISA, GSE, SCNA, CISSP (or Associate), CAP, GSLC, or CISM.
- Foundational security certification such as CompTIA Security+ required as a baseline if higher certifications are in progress.
- ACAS official training.
- 3+ years of hands-on ACAS and/or Nessus administration experience in a DoD or federal environment.
- 5+ years supporting, configuring, and administering Red Hat Enterprise Linux (RHEL) in an enterprise environment.
- Experience with DoD Risk Management Framework (RMF) and eMASS, including developing RMF packages and maintaining Plan of Action & Milestones (POA&M).
- Demonstrated experience managing vulnerability scanning across large enterprise networks with 1,000+ assets.
- Experience with virtualized environments (VMware or equivalent).
- ACAS Security Center (SC), Nessus Vulnerability Scanners (NVS), and Passive Vulnerability Scanner (PVS) administration.
- Red Hat Enterprise Linux (RHEL) - installation, hardening, and maintenance.
- Application of DISA STIGs and SCAP compliance tooling.
- IAVA Management, Implementation, and remediation tracking.
- Experience with eMASS for artifact submission, control compliance, and system authorization packages.
- Working knowledge of NIST SP 800-37/800-53 and DoDI 8510.01 RMF processes.
- Familiarity with OPORD/FRAGO support and military operations security requirements.
Preferred Qualifications- Scripting proficiency in NASL, Python, or Bash for scan automation and report customization.
- Experience with PVS deployment, tuning, and passive network traffic analysis.
- Familiarity with DISA/DoD Patch Repository processes and Tenable plugin/feed update workflows.
- Experience presenting technical findings and risk summaries to executive and non-technical audiences.
- Exposure to SIEM platforms (e.g., Splunk, Security Onion) and integration with ACAS scan data.
- Experience with Microsoft Visio for network architecture and ACAS component diagramming.
- Knowledge of SE Linux, AppArmor, or other access control frameworks.
- Familiarity with cloud environments (AWS GovCloud or Azure Government) and scanning in hybrid infrastructure.
#DINM
DABAOPP1
Original Posting:June 11, 2026
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:Pay Range $87,100.00 - $157,450.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
