The Leidos Defense Group has an immediate career opportunity for a Cyber Security Tools Analyst based at San Antonio, Texas.
This position supports the DCPDS program and will support IA/Cyber related assessments, evaluations, trade studies, and authority to operate (ATO) supporting DoD Risk Management Framework (RMF) compliance. Experience in Windows and/or Linux operating system, network, database and application security methodologies and practices. The candidate will be part of a dynamic Cybersecurity team working to capture, define, architect, design, develop, integrate, and test cyber solutions for the government customer. The candidate will focus on providing operational Cybersecurity support to both customers and team members to meet critical schedules and resolve critical/complex technical or operational problems.
Primary Responsibilities: Administer DCPDS Cybersecurity Tools, to include: Host Based Security System (HBSS). SIEM (ArcSight). Static Code Scanning tools (MicroFocus Fortify). Dynamic Code Scanning tools (MicroFocus WebInspect). Automation Tools (like Jenkins). Intrusion Detection System (IDS). Tenable Nessus. Support writing and maintaining DOD Assessment and Authorization (A&A) documentation. Support the planning, performing, and reporting results of Cybersecurity Validations. Support the DoD Cyber Incident handling and reporting criteria.
Basic Qualifications and Requirements. Have a favorable T5 DoD investigation for IT-I Position of Public Trust. Ability to maintain DoD 8570 certification of Security+ CE or higher. Must be US Citizen. BS degree and 4- 8 years of relevant experience or MS degree and 2-6 years of relevant experience (Additional years of relevant experience may be accepted in lieu of a BS).
Other Requirements: Experience with DISA security tools and procedures (HBSS and ACAS). Experience with an SIEM tool such as ArcSight. Experience with Static/Dynamic Code scanning tools such as Fortify SCA / WebInspect. Familiar with software code scanning tools (i.e. Fortify) scanning and reporting. Knowledge of RMF and DISA STIGS, and other DoD Cybersecurity regulations and policies. Familiar with analyzing security event log data (Windows, Linux/UNIX, Database, in-house Applications). Solid understanding of information system and networking architecture and its effect on Cybersecurity. Knowledge of DoD security standards, policies, and procedures. Ability to provide guidance on DoD IA regulations and requirements. Strong knowledge of computer vulnerabilities and exploits. Understanding of networking, architectures and system security. IT Systems/Information Assurance experience.
Preferred Qualifications: Experience developing Plans of Action & Milestones (POA&M) to implement upgrades, patches and IAVAs. Experience with Security Directives, Policies, Publications and Regulations. Experience in Windows/Linux security configurations. Working knowledge of Continuous Monitoring and Risk Scoring (CMRS). Experience as systems administrator, network administrator, or Cybersecurity Engineer a plus. Knowledge of DoD Information Assurance Vulnerability Management (IAVM) requirements and processes. Knowledge of DoD networking ports, protocols, and services. Familiarity with firewall, intrusion detection, filtering, routers, VPNs, scanning, and logging.