Engineer-ACAS-NESSUS

POSITION SUMMARY:

This position provides leadership and direction to a team of Tenable administrators responsible for operating and maintaining the Joint Service Provider’s Assured Compliance Assessment Solution (ACAS) program. This position is responsible for ensuring timely and accurate scanning and reporting per JSP and DoD policies and orders. Activities that this position will oversee include deploying, configuring, operating, monitoring, tuning, upgrading, and troubleshooting Tenable components spanning a large and complex environment.

PRIMARY RESPONSIBILITIES:

• Lead a team of Tenable administrators supporting various organizations across the National Capital Region

• Oversee completion of the following key functions for Tenable deployments across JSP’s area of responsibility
• Install updates to Tenable software as released and in compliance with STIG requirements
• Deploy, maintain, and tune Tenable scanners to meet current and future needs
• Create, deploy, and manage Tenable scan configurations
• Conduct scans and provide reporting to the JSP DCO leadership as well as scanned organizations
• Ensure that the ACAS scanners and Security Center are operational and reporting properly
• Produce reports and charts that convey the operational state of Tenable scanners as well roll-ups of scan findings, trends, and outliers
• Create and maintain standard operating procedures for the Tenable team
• Validate that the team documents, reports, and resolves Tenable management or operational issues in accordance with required timelines

BASIC QUALIFICATIONS:

• Bachelor's degree and 12 years of prior IT experience. Additional work experience or Cyber courses/certifications may be substituted in lieu of degree.
• 3 years of experience working with and administering Tenable Security Center and Tenable Nessus agents within the DoD environment.
• 3 years of experience leading a team of system administrators or cybersecurity professionals
• Experience managing ACAS scanners on Red Hat Enterprise Linux (RHEL)
• Demonstrated experience with multiple network security zones, subnetting, VRFs, and VLANs
• Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic finding.
• Strong analytical and troubleshooting skills.
• DoD 8570 IAT III and CSSP Infrastructure Support certifications required prior to starting.
• 8570 CE certification for ACAS required upon start
• Must be a US Citizen.
• An active Secret security clearance is required prior to start. Must be Top Secret – Sensitive Compartmented Information (TS/SCI) Eligible (DIA Adjudicated or capable of reciprocal acceptance by DIA)

PREFERRED QUALIFICATIONS:

• Cybersecurity experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization.
• Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
• Experience with malware analysis concepts and methods.
• Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings.