IA Engineer – Intermediate
Illinois, United States of America
Full Time
1 week ago
Visa Sponsor
Key skills
Cyber SecurityLeadershipNetwork SecurityFirewall
About this role
Role Overview
- Support cybersecurity and information assurance activities for SDDC information systems, networks, and business systems.
- Assist with RMF documentation, package development, assessment support, and authorization activities for SDDC systems.
- Update and maintain cybersecurity documentation in eMASS to support current system authorization status, control implementation, and compliance tracking.
- Support development and maintenance of RMF artifacts, including security plans, POA&Ms, security design documentation, assessment materials, and supporting technical documentation.
- Assist with vulnerability management activities, including review of ACAS, Nessus, SCAP, and other security scan results.
- Analyze vulnerability findings and support coordination with system administrators, technical teams, ISSOs, ISSMs, and Government stakeholders to identify remediation actions.
- Support preparation of vulnerability reports, compliance reports, and POA&M updates for open vulnerabilities and IAVM-related findings.
- Monitor STIG compliance for assigned systems and assist with review, validation, documentation, and tracking of STIG findings.
- Ingest or associate STIG findings with applicable RMF controls and assist with maintaining audit-ready compliance documentation.
- Support Cyber Tasking Order tracking, compliance discovery, reporting, and coordination with designated points of contact.
- Assist with firewall, whitelist, PPSM, and other cybersecurity compliance reviews, as required.
- Support incident response and reporting by assisting in the review of anomalous or suspicious activity, researching potential incidents, and coordinating response actions with the ISSO or ISSM.
- Assist with response, containment, eradication, and recovery activities for confirmed security incidents in accordance with SDDC, USTRANSCOM, NETCOM, and DoD procedures.
- Support administration, configuration, reporting, and maintenance of cybersecurity tools such as ACAS, HBSS, Nessus/Security Center, SolarWinds SEM, LogRhythm, McAfee Network Security Manager, IDS sensors, or comparable tools.
- Maintain accurate records, reports, trackers, and technical documentation to support audits, inspections, assessments, and Government reporting requirements.
- Ensure assigned cybersecurity activities comply with applicable DoD, Army, USTRANSCOM, SDDC, RMF, STIG, and information assurance requirements.
Requirements
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or related technical discipline.
- Minimum 5 years of experience supporting cybersecurity, information assurance, RMF, vulnerability management, or compliance activities within DoD or federal environments.
- Experience supporting RMF authorization activities, cybersecurity documentation, control assessment, and compliance reporting.
- Experience using or supporting eMASS for RMF package management, control documentation, POA&M tracking, and authorization support.
- Experience reviewing vulnerability scan results and supporting remediation tracking using tools such as ACAS, Nessus, SCAP, or comparable DoD-approved scanning tools.
- Experience supporting DISA STIG review, compliance validation, audit preparation, and finding remediation.
- Experience developing, updating, and tracking POA&Ms for cybersecurity findings, RMF controls, IAVMs, or vulnerability management activities.
- Experience supporting incident response, suspicious activity reporting, compliance reporting, and coordination with ISSO, ISSM, or cybersecurity leadership.
- Knowledge of DoD cybersecurity policies, RMF, eMASS, DISA STIGs, POA&M management, IAVM compliance, and vulnerability management processes.
- Familiarity with ACAS, Nessus/Security Center, SCAP scanning, HBSS, McAfee security tools, IDS sensors, or similar cybersecurity tools.
- Strong analytical and problem-solving skills in cybersecurity and compliance-driven environments.
- Strong attention to detail when reviewing vulnerability findings, STIG checklists, RMF controls, and audit artifacts.
Tech Stack
- Cyber Security
Benefits
- Equal Employment Opportunity and Affirmative Action employer
- Pay Transparency Policy