Abacus Technology

Information Assurance Specialist (Vulnerability Assessment/ACAS)

Abacus Technology$75K — $95K *
Aerospace & Defense
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 3+ years in cybersecurity or information assurance role
  • High school diploma or GED required
  • Security+ certification mandatory
  • Forescout certification required
  • Experience with security tools like NESSUS, ACAS, DISA STIGs
  • Exceptional communication skills across all levels
  • U.S. citizenship and current Secret clearance needed

Responsibilities

  • Conduct system and network assessments for compliance with policies and guidelines
  • Evaluate the effectiveness of security architecture against known vulnerabilities
  • Analyze and prioritize vulnerabilities for risk mitigation
  • Create comprehensive reports for government stakeholders
  • Manage hardware inventory to restrict access to authorized devices
  • Control software inventory to ensure only authorized installations
  • Submit corrective action tickets to relevant teams
  • Conduct and analyze vulnerability scans, creating documentation like POA&Ms

Benefits

  • Full-time position with stable support program hours
  • Opportunity to work at a key military installation
  • Engagement in critical cybersecurity efforts for the Air Force
  • Possibility for professional growth and skill enhancement through exposure to various tools
  • Team collaboration within a specialized cybersecurity context
Full Job Description
Overview

Abacus Technology is seeking an Information Assurance Specialist to provide vulnerability assessment and ACAS support for the Air Force Intranet Control (AFINC) III Support program at Maxwell AFB/Gunter Annex.  This is a full-time position.

Responsibilities
  • Perform assessments of system and network and identifies where the system/network deviate from acceptable configurations, DoD policy, or local policy/guidelines.
  • Measure effectiveness of defense‐in-depth architecture against known vulnerabilities using available tools within organization to find them.
  • Analyze, prioritize, and mitigate vulnerabilities to lower or eliminate risk.
  • Create reports to effectively communicate to government problems and proposed solutions.
  • Actively manage (inventory, track, and request corrective action) all hardware devices on network that only authorized devices are given access and ensure unauthorized and unmanaged devices are found and prevented from gaining access.
  • Manage (inventory, track, and correct) all software on the network so that only authorized software is installed and can execute, and ensure unauthorized and unmanaged software is found and prevented from installation or execution.
  • Submit tickets to appropriate teams for corrective actions.
  • Conduct/review/validate vulnerability scans.
  • Perform vulnerability scans to include analysis of results, identification of false positives, exceptions, and subsequent POA&Ms and/or MFRs creation, monitoring and reporting to include POA&M status and contributions to Monthly and Quarterly reports.
  • Collect and review data gathered from a variety of tools (including intrusion detection system alerts, firewall, network traffic logs, and host system logs) to analyze events for possible attacks that occur within the environment.
  • Validates, investigates, and analyzes all response activities related to cyber incidents.
  • Support creating and maintaining incident tracking information; planning, coordinating, and directing recovery activities; and incident tracking information; and incidents analysis tasks, including examining all available information and supporting evidence of artifacts related to an incident or event.
  • Perform assessments of systems and networks within the network environment or enclave and identify where those systems and/or networks deviate from acceptable configurations, enclave policy, or local policy.
Qualifications

3+ years experience in a cyber security or information assurance role.  HS diploma or GED.  Must be Security+ certified.  Must hold a Forescout certification.  Experience utilizing security relevant tools to include: NESSUS, ACAS, DISA STIGs, Audit Tools, Forescout, and ESS.  Outstanding communication skills across all levels of the organization.  Must be a US citizen and hold a current Secret clearance.

 

Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

 

About Abacus Technology

Abacus Technology is a provider of information technology services and solutions to government agencies and the private sector. The company offers a range of services, including cloud computing, cybersecurity, software development, and program management. Abacus Technology was founded in 1983 and is headquartered in Chevy Chase, Maryland.
Learn more about Abacus Technology
Size
1,000 employees
Industry
Founded
1983

Similar Jobs

More Jobs at Abacus Technology

More Aerospace & Defense Jobs

Find similar Information Assurance Specialist (Vulnerability Assessment/ACAS) jobs: