Cyber Security and DevOps Specialist

About The Position

Requirements

• Bachelor’s Degree and minimum 4 years of prior relevant experience.
• Graduate Degree and a minimum of 2 years of prior related experience.
• In lieu of a degree, minimum of 8 years of prior related experience.
• Active Secret clearance is required.

Nice To Haves

• 8570\8140 IAM Level 1, or higher, compliant certification (Security+)
• Experience with Risk Management Framework (RMF) and security compliance.
• Strong knowledge of Linux operating systems and associated hardware platforms.
• Excellent problem-solving skills and the ability to work under pressure.
• Strong communication and documentation skills.
• Experience with virtualization technologies and containerization, including VMWare, Docker, and Podman.
• Strong understanding of network infrastructure and protocols.
• Experience installing, configuring, and maintaining DevOps applications, including Git, Jenkins, BitBucket, and Confluence.
• Familiarity with the Risk Management Framework and its application in securing IT systems.
• Effective communication skills, both written and verbal.
• Ability to work independently as well as collaboratively in a team environment.
• Previous experience with RMF as Information Systems Security Manager (ISSM) or Information Systems Security Officer (ISSO)
• Experience with tools such as ACAS (Nessus), STIGViewer, SCAP, and Splunk.
• Experience as a Linux System Administrator
• Experience with NISPOM, DAAG, JSIG, ICD
• Network+, CCNA, CISSP, RHCSA Certifications
• 6 years direct and relevant experience with Information Security and Cyber Intelligence working in a Department of Defense (DoD) environment.

Responsibilities

• Prepare for and participate in government security assessments and audits.
• Configure various operating systems such as Windows, Linux, and UNIX to meet 32 CFR Part 117 - National Industrial Security Program Operating Manual (NISPOM), Defense Security Service Assessment and Authorization Guide (DAAG), Joint Special Access Program (SAP) Implementation Guide (JSIG), National Institute of Standards and Technology (NIST) standards, and Command Cyber Readiness Inspection (CCRI) requirements.
• Install, configure, secure, and maintain DevOps engineering tools in coordination with engineering team leads.
• Develop documentation for authorization for new and existing systems in accordance with NISPOM, JSIG, or NIST; and Risk Management Framework (RMF).
• Utilize/maintain multiple security databases and sites including SIMS and eMASS.
• Conduct vulnerability and compliance assessments against systems and networks to determine risk posture.
• Review electronic and manual audit logs and investigate any anomalies or security incidents.
• Assist in security investigations and incident response.
• Develop information security training materials and processes as well as train general and privileged users on computing security processes, policies and procedures.
• Remain informed of evolving security requirements.
• Coordinate with the Information System Security Manager (ISSM) and Facility Security Officer (FSO) on system security compliance.
• A current and active Secret security clearance with the ability to obtain a Top-Secret security clearance post-hire is required