Job Description

• Assist in authoring technical documentation including test plans, test procedures, technical white papers, and test reports
• Use industry accepted and in-house developed tools to collect and aggregate cyber security data for use in identifying non-compliant system settings, exploitable threats, and other system vulnerabilities
• Assist in the communication with system developers to further understanding of cyber security concepts and implemented controls
• Provide the collected data to Information Systems Security Engineers (ISSE) in support of their assessment of system cyber security posture and support the cyber security operations staff in resolving complex cyber security issues as requested
• Assist in the authoring and peer-reviews cyber security test plans and detailed test procedures that include step-by-step instructions for using advanced cyber security tools
• Enhance cyber security testing processes and procedures through feedback and implementation
• Assist in the reporting on cyber security program activities to upper management as requested
• Travel: approximately 10%

• Bachelor’s degree in engineering, mathematics, physics, computer science, or equivalent technical discipline
• 2+ years of experience with Information Assurance Vulnerability Management (IAVM) processes
• 2+ years of experience in military, aerospace, DoD government, academia, or industry
• 2+ years of experience using Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG) and benchmarks
• Understand fundamentals of various Operating Systems
• Ability to troubleshoot problems involving complex systems
• Within 6 months of hire, must meet position and certification requirements outlined in DoDD 8140 and DoDD 8570.01-M for Information Assurance
• Excellent oral and written communication skills
• Motivated, self-starter capable of autonomous on-the-job learning/improvement with minimal supervision
• Must be a US Citizen and be able to obtain a DoD SECRET Security Clearance

• International Council on Systems Engineering (INCOSE) Certification (i.e. ASEP, CSEP, ESEP)
• Understand fundamental concepts of software design and implementation
• Ability to undertake new challenges with limited guidance
• Knowledge of DoD mission system sustainment
• Experience with Secure Content Automation Protocol (SCAP) Compliance Checker (SCC) and STIG Viewer
• Experience with Assured Compliance Assessment Solution (ACAS)
• Experience using the Command-Line-Interface (CLI)
• Experience with administrating Linux and Windows systems
• Experience with Database Management (e.g. Microsoft SQL Server)
• Experience with Cisco network devices
• Experience with developing and maintaining scripts (primarily PowerShell)
• Experience with working in a highly competitive multi-contractor environment
• Familiarity with software vulnerability assessment and code analysis
• Familiarity with DoD RMF Assessment and Authorization (A&A) process
• Familiarity with AF/DoD/CNSSI/NIST security policy/manuals and other guiding policy documents
• ​​​​​​Familiarity with penetration testing methodology and tools