Responsibilities & QualificationsRESPONSIBILITIES
- Manage the POAM process for Vulnerabilities and STIG violations.
- Analyze scan results to identify CAT I/II/III findings, false positives, and configuration errors.
- Track and document remediation actions, POA&Ms, and exceptions in alignment with RMF guidance.
- Validate and interpret DISA STIG checklists, collaborate with system admins and engineers to ensure secure configurations.
- Prepare and deliver vulnerability reports, compliance dashboards, and metrics for leadership and inspection readiness (e.g., CCRI/CORA).
- Support the development and maintenance of asset groupings, scan zones, credentialed scanning, and scan tuning strategies.
- Work closely with Queue Managers, ISSOs, and Engineering teams to prioritize and close critical vulnerabilities.
- Maintain data hygiene within ACAS, ensuring consistent tagging, grouping, and reporting structures.
REQUIRED QUALIFICATIONS
- Active DoD Secret clearance required.
- CompTIA Security+CE or higher DoD 8570 IAT Level II certification must meet 8140 ISSM role qualification.
- Bachelors Degree and 2-4 years of experience. Additional years of experience or certifications may be considered in lieu of a degree.
- 3 years of cybersecurity or system administration experience, with at least 1 year of direct ACAS or Tenable experience.
- Working knowledge of DISA STIGs, vulnerability risk levels, and POA&M remediation strategies.Familiarity with NIST SP 800-53, RMF compliance, and Air Force cybersecurity policy (AFMAN 17-130).
- Strong attention to detail, documentation skills, and the ability to interpret technical vulnerability data.
PREFERRED QUALIFICATIONS
- Experience supporting USAF, DISA, or other DoD mission systems.Familiarity with ACAS, DISPATCH EaluateSTIG, STIGManager, Involvement in CCRI/CORA preparation or vulnerability remediation campaigns.
- Ability to communicate risk-based recommendations to both technical and non-technical stakeholders.
- Understanding of automation tools/scripts (e.g., PowerShell, Nessus APIs) to support scan or report optimization.
Overview
We are seeking a Vulnerability Management to join our team supporting at Joint Base Andrews, MD.
Vulnerability Management to support the Air Force National Capital Region IT Services program. The AFNCR IT Services program provides support services for information systems for Headquarters Air Force (HAF), Air Force District of Washington (AFDW), Office of the Secretary of Defense (OSD), Joint Chiefs of Staff, and other Air Force activities within the AFNCR, missions to include the Pentagon, Joint Base Andrews (JBA), Joint Base Anacostia-Bolling (JBAB), and other locations, leased spaces, and alternate sites. The major support areas required are IT Operations and Maintenance; Plans, Projects, and Engineering and National Military Command Center (NMCC).
Additional Job Information
WORK ENVIRONMENT AND PHYSICAL DEMANDS
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
- Location: Joint Base Andrews, MD
- Type of environment: Office
- Noise level: Medium
- Work schedule: Schedule is day shift Monday 6 Friday. May be requested to work evenings and weekends to meet program and contract needs.
- Amount of Travel: less than 10%
PHYSICAL DEMANDS
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to use hands to grip, handle, or feel; reach with hands and arms; and talk or hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds.
The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus.
WORK AUTHORIZATION/SECURITY CLEARANCE
- US Citizen
- Active Secret Clearance
WAGE INFORMATION
Target salary range: $70,000.00 - $95,000.00. The salary range displayed is an estimate only and is not a guarantee of compensation or salary, and will be determined on several factors regarding the individual9s particular combination of education, knowledge, skills, competencies and experience, as well as contract parameters and organizational requirements. The displayed salary is one component of the total compensation package for employees.
OTHER INFORMATION
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
TekSynap is a drug-free workplace. We reserve the right to conduct drug testing in accordance with federal, state, and local laws. All employees and candidates may be subject to drug screening if deemed necessary to ensure a safe and compliant working environment.
Many positions require specific certifications and/or the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. Applicants who accept an offer of employment may be subject to investigations performed by TekSynap and/or the Government to verify the candidate meets the required qualifications and other eligibility requirements.