Description
SAIC has an opportunity for an ACAS Vulnerability Management Specialist to support the US Army Corps of Engineers Revolutionary IT Services (USACE RITS) program.
NOTE: This is a hybrid role, with ~1 day a week onsite in the Washington DC, Vicksburg MS, Little Rock AR or Tulsa OK areas and the other days work from home / virtual / remote position.
The Ideal Candidate will serve as a member of the Assured Compliance Assessment Solution (ACAS) team responsible for operating and maintaining the USCAE ACAS instance.
Overall Duties Include:
Deploy, maintain, and perform tuning of ACAS scanners to meet current and future needs, IAW latest Best Practice Guide and CORA/CCRI requirements
Develop / create, deploy, and manage ACAS scan configurations IAW ACAS BPG
Conduct scans and provide detailed reporting to leadership
Ensures scheduled scans are covering 100% of intended assets and are being run successfully
Ensure all ACAS scanners, components and Security Center are operational and reporting properly
Perform required vulnerability scans and create repositories, queries, and dashboards as necessary to ensure vulnerability report information is available
Investigate false positives or any invalid scan data results
Develop tracking mechanism for false positives and track false positives until the finding is corrected; provide results upon resolution
Upgrade Security Centers and Scanners to the latest DISA-approved version, as well as having the latest patches installed as they are approved and released
Continuously monitor the performance and integrity of ACAS, assess scan times, and make changes to improve performance
Qualifications
Education Requirements:
BS degree and two (2) years or more experience; four (4) years of experience accepted in lieu of degree
Experience Requirements:
Scripting or Application programming interface (API) (i.e. PowerShell, Python, etc.)
Proven experience with security and auditing tools for Windows and Linux operating systems such to include: installing, configuring, maintenance, backups, and restore
Experience in supporting, configuring, administering Assured Compliance Assessment Solution (ACAS) and/or Nessus
Certification Requirements:
Must have one (1) current DoD 8140 Basic Systems Security Analyst certification (i.e. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, OR SSCP)
Clearance Requirement:
Active Secret Security Clearance
Target salary range: $80,001 - $120,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
REQNUMBER: 2512199
SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability
