Jobs · Information Technology · Virginia

Senior Cybersecurity Internal Controls Administrator w/Secret Clearance

TekSynap · Radford, VA · 11 mo ago
Information Technology$125k–$175k/yrFull-time

Responsibilities

  • Manage the Assured Compliance Assessment Solution (ACAS) infrastructure, including system configuration, scanning schedules, reporting, and vulnerability analysis in accordance with DISA ACAS Best Practices Guide.
  • Perform Security Technical Implementation Guide (STIG) compliance scans and generate reports to ensure systems meet DoD cybersecurity standards.
  • Manage Army Endpoint Security Solution (AESS) Site Reviewer activities to ensure endpoint protection compliance.
  • Administer DISA Whitelist processes, ensuring authorized software and configurations are documented and managed.
  • Oversee Public Key Infrastructure (PKI) token provisioning, distribution, and management activities.
  • Conduct Ports, Protocols, and Services Management (PPSM) support by validating required services and reviewing unauthorized connections.
  • Review and assess proposed system configuration changes for potential security impacts in alignment with DoD and Army security policies.
  • Participate in the onboarding and offboarding process of personnel with regard to system account provisioning, deprovisioning, and access controls.
  • Update and maintain the organization’s designated training and certification tracking system.
  • Support Software Assurance (SwA) reviews, ensuring ACAS findings are remediated or properly documented via eMASS POA&Ms.
  • Collaborate with Cybersecurity Service Providers and system stakeholders to support incident response, compliance reviews, and risk mitigation.

Qualifications

  • Experience REQUIRED QUALIFICATIONS: Ten (10) years of experience in Cybersecurity and Network Defense roles.
  • Hands-on experience with ACAS administration, including infrastructure management, scan configuration, reporting and analysis.
  • Proficiency in managing AESS Site Reviewer, DISA Whitelist, and PKI Token services.
  • Experience in STIG compliance scanning and remediation tracking.
  • Experience providing Ports, Protocols, & Services Management (PPSM) support.
  • Experience reviewing technical changes for security implications.
  • Proficient in account lifecycle management and certification tracking systems.
  • Familiarity with the DISA ACAS Best Practices Guide and NETCOM cybersecurity policies.
  • Experience with DISA Continuous Monitoring and Risk Scoring (CMRS).
  • Strong analytical and problem-solving capabilities.
  • Excellent written and verbal communication skills, with the ability to work across multi-functional teams.
  • Familiarity with Army enterprise monitoring tools and security management practices.
  • Knowledge of security control documentation, including POA&Ms and audit trail compliance.
  • Understanding of Continuity of Operations Plans (COOP) and Communication Plans.
  • Prior experience supporting incident response, forensic investigations, or real-time threat detection.
  • Demonstrated experience supporting government agencies, customers, or contracts within federal environments. This includes the Intelligence Community (IC), Department of Defense (DoD), Federal Civil agencies, and military organizations.
  • Prior experience supporting the same or similar contract, with an in-depth understanding of the customer environment, requirements, and operational landscape, is highly desirable.
  • Certifications: Cybersecurity certification, such as Security+, CISSP, or equivalent.
  • Clearance: Secret – IT-II Non-Critical Sensitive Clearance or Tier 3 (T3) investigation.

Similar jobs