Leidos Enterprise & Cyber Solutions Defense team is seeking an experienced ACAS System Administrator who will have responsibility for reviewing, analyzing, and documenting security vulnerability and compliance scans within the Army’s C5ISR CSSP. The work will be performed at our customer's Adelphi, MD site. An active DoD Secret clearance is required and you must be eligible to obtain a Top Secret.
What will you do in this role?
Perform installation, monitoring, testing, troubleshooting, and administration of the ACAS/Nessus Vulnerability Scanner applications
Work extensively with vulnerability scanning tools to include and understanding of Vulnerability Management System and Continuous Monitoring and Risk Scoring.
Work with security architectures - demonstrating your experience in Windows, Linux and UNIX operating system administration
Conduct vulnerability analysis, research, collaborate with System Administrators to mitigate identified vulnerabilities and/or author Plans of Actions and Milestones (PO&AM) as needed
Configure, operate, and maintain HBSS and its components (ePolicy Orchestrator, McAfee Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, ESS, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted
Provide guidance on vulnerability and malware remediation.
Analyze the customer’s needs and identify security requirements / solutions.
Demonstrate experience with DoD STIGS, IA Tools (SCCVI, SCRI, Host Based Security System) , program, and Risk Management Framework
Provide technical support to customers involving a wide range of software, hardware, and DoD specific applications with respect to the ACAS solution
Demonstrate your experience with network design, LAN/WAN systems and lab configuration to include the following capabilities: Installing, operating and maintaining routers, switches, domain controllers, member servers, clients, etc.
Replicate client environment issues Understanding networking support to include TCP/IP, DNS, and SMTP issues
Analyze and assist in the application of (STIGs) and (IAVAs)
Ensure scheduled scans are covering 100% of intended assets and are being run successfully
Ensure SC is being updated regularly; address unsuccessful updates of the SC and identify the root cause of the unsuccessful update
Configure, optimize, and test vulnerability scans against new and existing Operating Systems and platforms
Perform Nessus vulnerability scans, Nessus agent scans
Perform scan policy analysis & configuration to determine the impact of vulnerability scanning against target devices
Troubleshoot credential failure issues by performing configuration analysis against the target device
These are the required qualifications:
Bachelor's Degree and eight years of experience, Master's and six years experience or equivalent work experience may be considered in lieu of degree.
Must hold an active DoD Secret security clearance, with eligibility to upgrade to Top Secret.
Hold current DoD 8570 IAM II CSSP-Analyst certification
Effective communication and presentation skills (i.e., ability to present ideas effectively in formal and informal situations in group and individual settings).
Strong planning, organizational, and time management skills (i.e., ability to effectively plan, organize, and prioritize work, and to control and follow up to assure work completion).
Demonstrated initiative (i.e. initiate appropriate action without being directed) and ability to work independently.
Strong interpersonal skills (e.g., ability to work effectively on teams, communicate effectively, work/interact effectively and amicably with people from diverse backgrounds and cultures and with diverse personal attributes).