ACAS Engineer

Description

Leidos is seeking an ACAS Engineer to join our Defense Enclave Services (DES) team at Ft. Meade, MD.

POSITION SUMMARY:
The successful candidate will be a Subject Matter Expert (SME) providing ACAS administration, scanning strategy, and enterprise scanning health for DES and/or other organizations supported under the DES contract. The selected candidate will serve as an administrator on the system, will provide Subject Matter Expert (SME) level support to define, analyze, implement, secure, test, and deploy new requirements and enhancements for network monitoring, network vulnerability identification and remediation, and network security compliance, implement and install ACAS (Nessus scanners and Security Centers), provide guidance and recommendations for best practice configuration of ACAS organizations, scan repositories, asset lists, scan profiles, etc. The ACAS engineer will also assist with automation and implementation of periodic vulnerability reporting from ACAS to other organizations and coordinate with DES teams and client support teams to upgrade and enhance ACAS using the latest software releases, plugins, and mission enabling configurations as they become available. The successful candidate for this position is a highly motivated individual, with a strong IT security background who excels integrating, operating, and deploying security technology and solutions and interacts well with both internal teams and clients.

CLEARANCE REQUIREMENT:

•Must hold an active Secret security clearance. (US Citizenship required)

PRIMARY RESPONSIBILITIES:

•Set up and execute Nessus scans through the Security Center interface, determine whether a completed scan has provided valid results, and generate a variety of reports to meet customer needs and expectations.

•Develop server automation in one or more of the following languages Bash, Perl, Shell, Powershell, SQL, D3, HTML, XML, CSS, Bash, JAVA and/or Python scripts.

•Analyze the results of security scans and ensuring that appropriate System Administrators apply security patches and/or make changes to the security configuration of the system as required.

•Provide scan analysis, of all assets as needed to support and validate IAVM and STIG compliance.

•Provide status update reports detailing IAVM and STIG compliance.

•Plan remediation of failed scans and credentials across the DES environment.

•Track and report on enterprise scanning health aligned to overall enterprise assets.

•Use Tenable products such as SecurityCenter, Nessus, PVS, Nessus Manager, and Nessus Agents.

•Proactively perform monthly and targeted (asset or IAVM) security scans on all networks using the latest approved Government security scanner(s) and associated definitions to determine vulnerabilities.

BASIC QUALIFICATIONS:

•Bachelor's degree and 8+ years of experience; additional years of directly applicable experience may be accepted in lieu of a degree.

•Five (5) years' experience with ACAS (Tenable Security Center and Tenable Nessus) disciplines and protocols to include comprehensive knowledge of specific C&A tasks.

•Must have experience installing, configuring, deploying, upgrading, operating, and maintaining Security Center and Tenable Nessus at an organizational or enterprise level.

•5+ years hands-on experience implementing and administering security solutions, including developing related documentation and artifacts

•Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps

•Experience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology.

•Excellent knowledge and experience with regard to IAM, NDR, EDR, SIEM, AI/ML, and other cybersecurity tools and related applications.

•Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes.

•Understanding of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems: a Security Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations.

•Current DoD 8570 IAT II Certification (or higher) is required at start date.

PREFERRED QUALIFICATIONS:

•Tenable/ACAS Certifications.

•Additional certifications demonstrating cybersecurity/technical mastery.

DISADES

External Referral Eligible

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.