Analyst III - Linux

• Performs information assurance analysis, scanning, remediation, vulnerability assessments, and maintains all required and applicable artifacts;
• Updates antivirus/anti-malware and other component definitions daily on training networks;
• Develops, collects, contributes, and provides RMF/C&A artifacts. Artifacts include hardware and software lists, identification of ports, protocols, and services, accreditation boundary diagrams, data flow diagrams, mitigation plans, vulnerability scans, and other related artifacts;
• Assists with security reviews, monitors, and enforces IA policies and procedures, and performs Cyber risk management, risk analysis, and remediation;
• Performs IA through all stages of system acquisition, development, implementation, and maintenance;
• Performs security monitoring on applicable networks and immediately reports to ISSM any detection of a virus, spillage, incident, event, or lack of ability to meet an IA safeguard;
• Ensures Information Assurance Vulnerability Alert (IAVA)/IA Directive compliance to include IAVM, ALCND, EXORDs, FRAGORDs, NCDOC Directives, and HBSS;
• Installs/Tests/Deploys IAVA/STIG security patches/configurations and provides applicable security artifacts/reports/status;
• Implements and completes Security Technical Implementation Guide (STIG) checklists for applicable systems/networks;
• Conducts applicable daily/monthly/quarterly auditing tasks such as system, application, and security log review, and configuration baseline review;
• Monitors and reports on DoD and DoN mandated safeguards;
• Configures and deploys the full HBSS suite and underlying operating system in accordance with DoD Cyber Tasking Orders (CTOs) and established policies;
• Performs day-to-day administration, test, and monitor framework and infrastructure;
• Develops technical SOPs, performs testing and validation, develops signatures, and audit controls;
• Conducts routine compliance audits, security log reviews, security incident responses, and low-level troubleshooting;
• Establishes metrics, monitors the HBSS program, monitors threats, and provides briefs and reports;
• Develops operational processes, models, and frameworks to meet operation and security requirements;
• Remains compliant with current software configuration requirements;
• Establishes and maintains an internal PKI/PKE infrastructure-training network in to facilitate the use of Common Access Cards (CAC) or tokens.

Do you have experience in Vuls?, Do you have a Bachelor's degree?, * Bachelor's degree in Information Technology, Computer Science, Mathematics, Statistics, Business, Engineering, or management information systems is required;

• Three (3) years of industry accepted Information Technology (IT) experience is required;
• Active DoD-issued Top Secret Security Clearance is required at start, with the ability to obtain SCI eligibility;
• IAT Level II (CCNA Security or CSA+ or GICSP or GSEC or Security+ce or SSCP) certification is required at start;
• Linux client server environments is required;
• Experience with GPOs, DNS, patch management, user account management, file/folder permissions is required;
• Experience with vulnerability remediation tools such as ACAS, Nessus, SCAP, HBSS, or equivalent is required;
• Experience with VMWare server/workstation, and virtualization technologies, network infrastructure installation, configuration, and maintenance is required.