(641) Cybersecurity Technical Specialist Level III

About The Position

Requirements

• Must be a U.S. Citizen.
• Ability to obtain/maintain Secret clearance.
• No degree or any degree in a non-directly related field with technical certifications andat least 7 years of relevant experience; or
• Bachelor’s Degree in a directly related field andat least 5 years of relevant experience.
• Experience in information security or network/system administration.
• Hands-on experience with cybersecurity and IT tools such as ACAS, HBSS/ESS, eMASS, and related toolsets for technical scanning, compliance, and system hardening.
• Experience in supporting, validating, and maintaining compliance for systems governed by DoD, Army, and federal standards and policies, including the RMF process and artifact maintenance.
• Must meet and maintain all requirements for privileged access to ATEC networks as specified by contract.
• Strong attention to detail, organizational skills, and commitment to maintaining security documentation and compliance in a regulated environment.

Nice To Haves

• Prior direct experience supporting Army, DoD, or Federal government cybersecurity programs.
• Additional certifications in cybersecurity or risk management, such as CompTIA Security+, CASP+ CE, CySA+, or other DoD 8140/8570-approved certifications, are desirable.
• Working knowledge of the NIST SP 800-53 and DoD RMF processes as applied to Army IT environments.
• Experience producing and reviewing security documentation and technical compliance reports for government customers.
• Strong oral and written communication skills, including the ability to summarize complex technical findings for non-technical audiences.

Responsibilities

• Perform vulnerability assessment and compliance validation using the Assured Compliance Assessment Solution (ACAS), Host Based Security System/Endpoint Security Solution (HBSS/ESS), and Security Content Automation Protocol (SCAP) tools.
• Support system administrators with the application of Security Technical Implementation Guides (STIGs), conduct device hardening, complete technical checklists, and validate compliance through regular scanning activities.
• Register, update, and maintain all system artifacts and technical documentation within the Enterprise Mission Assurance Support Service (eMASS) and Army Portfolio Management Solution (APMS).
• Assist in the preparation and ongoing maintenance of Plans of Action and Milestones (POA&Ms), tracking the status and resolution of vulnerabilities across system lifecycles.
• Provide technical documentation and compliance artifacts in a timely and accurate manner, supporting continuous monitoring and RMF compliance activities.
• Deliver direct technical assistance to system administrators and other stakeholders to resolve compliance issues and ensure the implementation of required controls on Army information systems.
• Participate in the technical validation and evaluation of implemented security controls, collaborating with technical teams during audits, incident responses, and remediation initiatives.
• Serve as an operational support resource for security control execution and continuous monitoring practices on regulated Department of Defense (DoD) networks.
• Contribute to the maintenance, accuracy, and completeness of all RMF documentation, including cybersecurity policies, system security plans, risk assessments, and vulnerability reports.
• Ensure documentation and POA&Ms are up-to-date and reflect the status of systems and remediated vulnerabilities in accordance with Army and contract requirements.
• Assist in producing reports and compliance deliverables for submission to Government customers.
• Work closely with key government and contractor personnel to meet all operational security, physical security, and cyber compliance requirements.
• Follow all Army, DoD, and federal policies and regulations related to cybersecurity, IT, Operations Security (OPSEC), personnel security, and information protection.
• Communicate technical findings and summaries clearly to both technical and non-technical stakeholders, providing oral and written updates as needed.