Chenega Corporation Cyber Security Systems/Network Specialist in Natick, Massachusetts
The Cyber Security Systems/Network Specialist will provide cyber systems support for customer network and mission systems, including system scanning using enterprise vulnerability scanning tools and techniques.
Provide administration for the Army’s Host Based Security System (HBSS), including ensuring that the McAfee agent is deployed to all assets, clients are checking in, DAT files are compliant, point product is compliant, rogue system cleaned up, network device identification, and analysis of policy auditor results, implementing mitigations, policy catalog maintenance, and troubleshooting.
Review HIPS policy enforcement and manage rules, event analysis, and rogue system exception verification.
Administer and manage deployed U.S. Army enterprise vulnerability scanning tools, including ACAS, SCAP, AESS, and Tanium to identify, remediate, and report vulnerabilities and to support remediation analytics.
Monitor system performance and scan results to identify trends, vulnerabilities, and performance issues that could impact supported systems security posture.
Support the Risk Management Framework (RMF) process IAW DoDI 8500.01 and 8510.01 which manages the life-cycle cybersecurity risk to DoD information technology, including current tracking and submission processes for accreditation packages.
Utilize DoD applications and tools, like Enterprise Mission Assurance Support Service (eMASS), to record RMF requirements and activities, including implementation of security controls.
Develop and support database scripts to automate daily routines and provide alerts.
Submit network and system changes and major version software updates through the change management process for approval prior to installation wide deployment or distribution.
Provide Collaborative Courses of Action (COA) for observed issues, trends, or vulnerabilities.
Collaborate in threat assessment, vulnerability analysis, risk assessment, and system/network risk mitigation.
Maintain professional certifications, training, and professional education as required by Army baseline standards and supporting cyber computing environments (e.g., AESS, AEMS, ACAS).
Participate in reviews of software, hardware, and network architecture change requests submitted through the configuration management process.
Interface with client and ensure effective communication.
Follow all NEC policies, procedures, and regulations.
Maintain currency on technology and service capabilities.
Other duties as assigned
High school diploma or GED and 4+ years of relevant experience or a combination of experience and training may be used in lieu of a degree
6+ years of related experience required
Must be proficient in the use of Tenable ACAS to create and manage Asset List, Scan Jobs, Credential Management, and Analysis and Reports with the Security Center Console
Must be well versed in the Army’s Information Assurance Vulnerability Management (IAVM) program, process, and mitigation actions utilizing ACAS tools and reports
Expertise in Tenable Security Center
Experience with cyber security vulnerability testing related network and system test tools (e.g., SCCM, Nessus, Tychon, SCAP)
Possess Baseline and Full Computing Environment certifications for IAT-II IAW DoD 8570.01-M and BBP 05-PR-M-0002
Acceptable certifications include Security+ CE, CCNA Security, CySA+, GICSP, GSEC, CND, or SSCP
SCCM/HBSS training certification required
Possess and maintain a valid state operator's license
Secret clearance is required
The position requires a COVID vaccination or an approved accommodation/exemption for a disability/medical condition or religious belief
Knowledge, Skills and Abilities
Experience in security engineering involving various computer hardware and software operating systems and application solutions in both a stand-alone and in LAN/WAN configurations is desired.
Experience implementing DoD and Federal IA Assessment and Authorization (A&A) processes, IA controls, and developing and maintaining associated documentation is desired.
Experience with network and system security administration, including operating system security configuration and account management best practices for MS Windows is desired.
Experience with PowerShell and Command scripting is desired.
Ability to work nights, weekends, and holidays as required.
Strong communications skills both written and oral, strong customer service and excellent interpersonal skills, ability to listen and understand what is being described by the end user, and the ability to explain problem resolutions when necessary.
Ability to occasionally work after hours.
Ability to meet minimum security clearance requirements.
#Chenega Technical Innovations, LLC
Chenega Corporation and family of companies is an EOE.
Equal Opportunity Employer/Veterans/Disabled
Native preference under PL 93-638.
We participate in the E-Verify Employment Verification Program