Monitor the DAU Network and associated systems for security related incidents, evaluate current threats and provide recommendations for remediation and reporting for any identified incidents to the Information Systems Security Manager (ISSM).
Use DOD/DAU provided tools to continually assess the security posture of the DAU Network and all connected systems as well as evaluating new systems and changes to existing systems for configuration weaknesses prior to production deployment of the systems.
System scanning - Perform necessary scans to assess or demonstrate compliance with IT security controls and shall document weaknesses and vulnerabilities found, if any. Where necessary, test and validate to ensure the system meets applicable DOD, DAU or NIST standards. The results from any scans or tests are submitted to the DAU ISSM.
Assist with gathering of information to support documentation of artifacts required to accredit all DAU systems and enclaves in order to achieve and maintain an Authority To Operate (ATO)
Knowledge and skills:
Ability to work independently as well as collaborate with other contractors, and end users
Excellent analytical, written and oral communication
Proactive and self-motivated, committed to achieving deadlines, meeting and producing results
Ability to produce quality documentation manage multiple assignments simultaneously
Knowledge of Microsoft Office Suite and Outlook
Knowledge of FISMA, NIST and DOD Information Security Policies and Best Practices
Knowledge of use of tools such as DISA ACAS, DISA Gold Disk, DISA eMASS. HBSS
3+ Years working the Risk Management Framework for DOD systems
Bachelor’s degree in Computer Science or related field