Cybersecurity Support

• Company SAIC
• No. of Openings 10+
• Salary Not Disclosed
• Work Type on-site

Job Description :

Description

SAIC is seeking a qualified Cyber Security support for the US Air Force Agency for Modeling and Simulation (AFAMS) program in Kaiserslautern, Germany.

AFAMS is the premier agency responsible for implementation, integration, and development of Modeling and Simulation (M&S) and training and analysis standards that support the US Air Force (USAF), Department of Defense (DoD), and mission partners requiring these capabilities to support the Warfighter in full-spectrum operations. As the lead agent for M&S within the USAF, AFAMS gathers requirements, seeks out potential solutions, and integrates legacy and emerging M&S solutions across the USAF and the DoD. The USAF has an M&S initiative that focuses on providing simulation and synthetic training as the critical capability to augment live training, act as an enabler for critical decision-making, and enhance human performance. In the current resource constrained environment, demand for M&S rises with the continuously evolving need for operational readiness and mission preparedness across the USAF, DoD, and with coalition partners. AFAMS focuses on providing innovative M&S services as the key to meeting this demand.

The role of this position is to support the USAFE-AFAFRICA Warfare Center (UAWC) at Einsiedlerhof AS, Germany. The Cyber Security Analyst will

• Perform network security monitoring and incident response for a DOD customer.
• Support the sustainment of the accredited cybersecurity posture of the UAWC’s domain enclaves by actively tracking and maintaining each network’s cyber-vulnerability level and system compliance to applicable DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs); report any deviations or shortfalls to the Information System Security Manager (ISSM) for action and awareness.
• Support and assist with the STIG/SRG checklist process, tracking automated compliance scans and manual STIG checklists as applicable based on Defense Information Systems Agency (DISA) releases. Validate results and track/report compliance of configuration changes based on CYBERCOM-driven tasking orders or other DoD short-notice threat response notifications.
• Actively maintain lists of active hosts on the different networks and the corresponding basic inventory listings of software used to determine STIGs and/or SRGs that need to be applied.
• Assist in researching proposed configuration updates/changes and apply a “patch-and-test” approach as appropriate to determine if a particular configuration update/change will have a detrimental effect on the UAWC processes and mission to make a determination on application in the operational environment.
• Provide comprehensive cybersecurity support to UAWC in support of Modeling and Simulation / Live, Virtual, and Constructive (M&S/LVC) information technology systems Provide comprehensive support to scan and remediate networks.
• Provide comprehensive support to security monitoring and detection of unauthorized access.
• Develop and execute Government approved security policies, plans, and procedures; implement data network security measures; operate and monitor network intrusion detection and forensic systems; conduct IS security incident handling; support Continuity of Operations Plan/Disaster Recovery (COOP/DR) plans, and perform certification of IS and networks. Provide technical support for Plan of Action and Mitigation process and remediation activities.
• Provide comprehensive support to obtaining and maintaining Authority to Operate (ATO) accreditation for UAWC networks and systems.
• Provide other related support including but not limited to
• Review system artifacts (e.g., documents) for accuracy.
• Conducting facility visits to observe the actual processes related to each IA control (technical, personnel, operational, or management in nature).
• Report security findings and issues associated with the RMF process to the appropriate Cybersecurity POCs.
• Support and coordinate necessary documentation submissions for UAWC network and system Interconnection Security Agreements (ISAs), Authority to Connect (ATC), or other security agreements for both persistent and event-based interconnections.
• Participate in meetings with system Information Assurance Security Officers (IASOs), Program Managers (PMs), Information System Security Managers (ISSMs)A&A authorities and their representatives, and any other representatives of UAWC-supported unit driven events or initiatives. During these meetings, present overviews of issues and recommendations; and provide meeting reports that outline the discussion topics and note action items from these meetings.
• Document problem areas and provide recommendations for a resolution.
• Follow-up on issues and resolutions.
• Document recommendations for process improvements.
• Support system administration personnel as necessary with other related functions to include but not limited to implementation and sustainment of cybersecurity best practices in accordance with DoD and DISA directives to maximize confidentiality, integrity, and availability of the UAWC networks and training mission.
• For scheduled and unscheduled cybersecurity posture audits, provide reporting on observations, findings, and any corrective actions applied or recommended. Provide relevant metrics on results of audits, identifying trends and recommendations to reduce vulnerabilities and maintain or improve system security posture.

Qualifications

TYPICAL EDUCATION AND EXPERIENCE Bachelors and ten (10) years or more of related experience; Masters and eight (8) years or more experience ; PhD or JD and five (5) years or more experience or 14 years of experience in lieu of degree

• Minimum of five years of information technology (IT) related experience, with a minimum of four years of direct hands-on experience in cybersecurity.
• DOD 8570.1 IAT Level II Certification.
• Detailed understanding of DoD cybersecurity policies and procedures, including FIPS 199, FIPS 200, NIST 800-53, DHS 4300A SSH, and other applicable policies.
• Comprehensive knowledge of Physical Security principles, methods, and techniques.
• Proficient in operating and configuring ACAS, HBSS, and vulnerability scanners.
• Proficient in using McAfee SIEM suites, McAfee Endpoint Security.
• Proficient using MS Office including Word, PowerPoint, Excel, SharePoint, and Teams.
• Must have active Secret Clearance

Desired Experience/Qualifications

• Operating system certification (i.e., Microsoft Certified Solutions Expert and/or Red Hat Certified System Administrator).
• Microsoft Windows environment, UNIX, Linux, Hyperconvergence technology, VMWare, VDI zero client architecture.
• Microsoft Certified Solutions Craftsman Server Infrastructure and/or Red Hat Certified System Administrator.
• Certified Information Systems Security Profession (CISSP) or CompTIA Advanced Security Practitioner (CASP).