Cyber Security Auditor

TekSynap•Honolulu, HI

3d•Onsite

About The Position

The CSFC Solutions Auditor would assist and support with the development, configuration, testing, and evaluation of Commercial Solutions for Classified (CSfC) solutions used to secure government customers' classified data and networks. The Engineer will work individually and as a member of a team to configure network, software, and hardware networking components and security appliances and applications to meet DoD requirements and support their installation and initialization onsite in the customers' environments. We are seeking a Cyber Security Auditor to join our team supporting Network Enterprise Technology Command (NETCOM) in Honolulu, HI. T ekSynap is a fast growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. “Technology moving at the speed of thought” embodies these principles – the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers. We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays. Visit us at www.TekSynap.com . Apply now to explore jobs with us! The safety and health of our employees is of the utmost importance. Employees are required to comply with any vaccination requirements mandated by contract, applicable law or regulation. By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP". As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration.

Requirements

Top Secret OR Higher OR Secret Clearan ce level with completed T5 investigation
5 or more years of experience in cybersecurity
BA/BS = 5 years; AA=7 years
One of the following DoD8140 Certifications: CRISC (Certified Risk and Information Systems Control) CISA (Certified Information Systems Auditor) CISM (Certified Information Security Manager) CISSP (Certified Information Systems Security Professional) CISSP-ISSMP (Information Systems Security Management Professional) CISSP-ISSAP (Information Systems Security Architecture Professional) CompTIA SecurityX (formerly CASP+) GSLC ( GIAC Security Leadership Certification )
A Computing Environment Certification (e.g., Security+)

Responsibilities

Coordinate with the NSA CSFC PMO on all CSFC related documents and statuses.
Prepare documents required for NSA registration (Checklist, Annex, Deviations, ConOps, etc.)
Prepare daily, weekly, and monthly reports describing the task status in accordance with task order report template.
Review, manage, control, and maintain security audit log data
Document and report security-related incidents to appropriate authorities
Perform annual assessment of NSA capability packages checklists and Cross Domain Solution registrations
Performs authorization continuous monitoring on all Risk Management Framework (RMF) packages
Evaluate an array of IT devices (e.g. Windows, RHEL, Cisco routers, switches, firewalls, etc.) for DoD compliance using SCAP Compliance checker, ACAS, Evaluate STIG, and via manual STIG check reviews
Must be proficient in navigating through the eMASS application
Provide DoD Cybersecurity analysis and risk-based security recommendations for the CSfC system
Assess CSfC IAW DoDI 8500, DoDI 8510 and NISP SP 800-53
Review, updated and/or develop NSA registration artifacts (e.g., SSP, POA&M, MOU/MOA, topology, network architecture, PPSM, policies and procedures, HW/SW lists.) for CSFC compliance.
Supports CT&E or DT&E activities of system security engineering and program protection activities.
Identify the mitigation controls for identified risks and propose additional strategies for identified vulnerabilities
Support all Cross-Domain solution requirements
Act as the Cybersecurity Subject Matter Expert
Consult in other projects when needed
Continue education and learning new and evolving technology
Perform special projects and other duties assigned