Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defense’s mission to keep our country safe and secure.
The Analyst shall operate and maintain the ACAS solution, to support network and application scanning and ensure configuration assessments are conducted and incidents are resolved in accordance with the incident response table and client SOPs.
Familiar in the utilization of Tenable NESSUS Assured Compliance Asset Solution (ACAS) scanning agent and Vulnerability Remediation Asset Manager (VRAM) across seven shipboard enclaves.
-Installation, monitoring, testing, troubleshooting, and administration of the Nessus and Passive Vulnerability Scanner applications.
-Create ACAS queries to optimize processes, procedures, and analysis.
-Configures, optimizes, and tests vulnerability scans against new and existing Operating Systems and platforms.
-Conduct vulnerability analysis, research, and script analysis to verify potential false positives.
-Perform scan policy analysis & configuration to determine the impact of vulnerability scanning against target devices.
-Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
-Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.
-Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.
-Identifies security risks and exposures, determines the causes of security violations, and suggests procedures to halt future incidents and improve security.
-Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware, and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.
-Maintain system documentation.
Education and Experience:
-BA/BS in Cyber Security or equivalent or documented 8+ years of experience.
-2+ yrs Knowledge and experience with ACAS Security Center (SC) and Nessus Vulnerability Scanners (NVS).
-Possess understanding and experience with common cybersecurity toolsets and processes to include STIGS, CAS, IAVA Management and Implementation, and OPORD/FRAGO support.
DOD RMF Configuration Management.
NIST SP800-53 and NIST SP800-37.
TS/SCI eligible with POLY.
DoD 8570 IAT II certification.
Security+ / Linux+
US Citizenship Required
Years of Experience
4 + years of related experience
* may vary based on technical training, certification(s), or degree
CompTIA - Security+ - CompTIA - CompTIA
Less than 10%
U.S. Citizenship Required
About Our Work
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.