Cybersecurity Technical Auditor - Akima
Aberdeen Proving Ground, MD
About the Job
SAVA is looking for a Cybersecurity Technical Auditor to work at Aberdeen Proving Ground, TX.
Serve as a Cybersecurity Technical Auditor on a major IT support contract for the Army Test and Evaluation Command (ATEC) at the Aberdeen Test Center (ATC). Responsibilities include:
+ Performs Secure Code Review
+ Uses HP Fortify to examine code scan results submitted by developers.
+ Identifies and verifies noted false positives.
+ Provides comments on scan results and vulnerabilities present, recommend POA&M mitigations.
+ Conducts Software and Hardware Assessments
+ Of installed software on isolated VM and assess software against 800-53 controls and AS&D STIG,
+ Uses Wireshark and Attack surface analyzer to assess software traffic and connections.
+ Assesses Hardware against named Security Technical Implementation Guides (STIGs) or Security Requirements Guides (SRGs).
+ Documents assessment results and potential mitigations.
+ Assists with assessment of subordinate locations against STIG, 800-53 controls, and Army regulations.
+ STIG checklist reviews for packages managed by the branch.
+ Provide auditing of technical controls within eMASS.
Responsibilities
+ Plans and implements security measures to protect computer systems, networks, and data from loss and service interruptions.
+ Analyzes and documents security risks, breaches, and other cyber security incidents and the damage they cause.
+ Oversees the monitoring of the computer networks for security issues.
+ Installs and operates security software and measures to protect systems and information infrastructure, including firewalls and data encryption programs.
+ May train staff on network and IT security procedures.
+ Handles complex issues and problems and refers only the most complex issues to higher-level staff.
+ Possesses comprehensive knowledge of subject matter.
+ Performs work under minimal supervision.
+ May act as a lead.
Qualifications
+ Active Secret security clearance
+ Bachelor’s Degree in directly related field and at least 5 years of relevant experience; relevant work experience may be substituted for bachelor’s degree.
+ Must hold one of following DOD 8570 baseline certifications:
1. CSSP-AU (CEH, CySA+ (formerly CSA+), CISA, GSNA, CFR, PenTest)
2. IAT III or IASAE (CASP+CE, CISSP (or Associate), CSSLP)
+ Must possess DOD 8570 baseline certifications meeting the requirements for:
1. IAT Level II or IAM Level I
+ Relevant education and/or experience in the assigned program area (Computer Science, Computer/Software Engineering, Computer Information Systems) with specific experience in cybersecurity and/or information assurance.
+ Specialized experience in:
+ AS&D STIG compliance
+ Secure software development/testing
+ Static and dynamic code analysis
+ Software assurance, software assessments application threat modeling.
+ Performing software and hardware risk and vulnerability analysis or a closely related function, such as technical assessment of software for networks, applications and systems.
+ Using cybersecurity/IT audit tools such as ACAS, HP Fortify, HP Web Inspect, BURP Suite, or other software assurance tools.
This Hybrid position requires applicants to be within 1.5 – 2 hours commute from Aberdeen Proving Ground, MD or FT Cavazos, TX for IT support.
Job ID
2024-13188
Work Type
Hybrid
Company Description
Work Where it Matters
SAVA, an Akima company, is not just another global services contractor. As an Alaska Native Corporation (ANC), our mission and purpose extend beyond our exciting federal projects as we support our shareholder communities in Alaska.
At SAVA, the work you do every day makes a difference in the lives of our 15,000 Iñupiat shareholders, a group of Alaska natives from one of the most remote and harshest environments in the United States.
For our shareholders , SAVA provides support and employment opportunities and contributes to the survival of a culture that has thrived above the Arctic Circle for more than 10,000 years.
For our government customers , SAVA delivers global solutions that enhance business processes, lower costs, and take on today’s missions with greater opportunity, agility, and strength.
As a SAVA employee , you will be surrounded by a challenging, yet supportive work environment that is committed to innovation and diversity, two of our most important values. You will also have access to our comprehensive benefits and competitive pay in addition to growth opportunities and excellent retirement options.
We are an equal opportunity employer and comply with all applicable federal, state, and local fair employment practices laws. All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law. If you are an individual with a disability, or have known limitations related to pregnancy, childbirth, or related medical conditions, and would like to request a reasonable accommodation for any part of the employment process, please contact us at job-assist@akima.com or 571-353-7053 (information about job applications status is not available at this contact information).
Serve as a Cybersecurity Technical Auditor on a major IT support contract for the Army Test and Evaluation Command (ATEC) at the Aberdeen Test Center (ATC). Responsibilities include:
+ Performs Secure Code Review
+ Uses HP Fortify to examine code scan results submitted by developers.
+ Identifies and verifies noted false positives.
+ Provides comments on scan results and vulnerabilities present, recommend POA&M mitigations.
+ Conducts Software and Hardware Assessments
+ Of installed software on isolated VM and assess software against 800-53 controls and AS&D STIG,
+ Uses Wireshark and Attack surface analyzer to assess software traffic and connections.
+ Assesses Hardware against named Security Technical Implementation Guides (STIGs) or Security Requirements Guides (SRGs).
+ Documents assessment results and potential mitigations.
+ Assists with assessment of subordinate locations against STIG, 800-53 controls, and Army regulations.
+ STIG checklist reviews for packages managed by the branch.
+ Provide auditing of technical controls within eMASS.
Responsibilities
+ Plans and implements security measures to protect computer systems, networks, and data from loss and service interruptions.
+ Analyzes and documents security risks, breaches, and other cyber security incidents and the damage they cause.
+ Oversees the monitoring of the computer networks for security issues.
+ Installs and operates security software and measures to protect systems and information infrastructure, including firewalls and data encryption programs.
+ May train staff on network and IT security procedures.
+ Handles complex issues and problems and refers only the most complex issues to higher-level staff.
+ Possesses comprehensive knowledge of subject matter.
+ Performs work under minimal supervision.
+ May act as a lead.
Qualifications
+ Active Secret security clearance
+ Bachelor’s Degree in directly related field and at least 5 years of relevant experience; relevant work experience may be substituted for bachelor’s degree.
+ Must hold one of following DOD 8570 baseline certifications:
1. CSSP-AU (CEH, CySA+ (formerly CSA+), CISA, GSNA, CFR, PenTest)
2. IAT III or IASAE (CASP+CE, CISSP (or Associate), CSSLP)
+ Must possess DOD 8570 baseline certifications meeting the requirements for:
1. IAT Level II or IAM Level I
+ Relevant education and/or experience in the assigned program area (Computer Science, Computer/Software Engineering, Computer Information Systems) with specific experience in cybersecurity and/or information assurance.
+ Specialized experience in:
+ AS&D STIG compliance
+ Secure software development/testing
+ Static and dynamic code analysis
+ Software assurance, software assessments application threat modeling.
+ Performing software and hardware risk and vulnerability analysis or a closely related function, such as technical assessment of software for networks, applications and systems.
+ Using cybersecurity/IT audit tools such as ACAS, HP Fortify, HP Web Inspect, BURP Suite, or other software assurance tools.
This Hybrid position requires applicants to be within 1.5 – 2 hours commute from Aberdeen Proving Ground, MD or FT Cavazos, TX for IT support.
Job ID
2024-13188
Work Type
Hybrid
Company Description
Work Where it Matters
SAVA, an Akima company, is not just another global services contractor. As an Alaska Native Corporation (ANC), our mission and purpose extend beyond our exciting federal projects as we support our shareholder communities in Alaska.
At SAVA, the work you do every day makes a difference in the lives of our 15,000 Iñupiat shareholders, a group of Alaska natives from one of the most remote and harshest environments in the United States.
For our shareholders , SAVA provides support and employment opportunities and contributes to the survival of a culture that has thrived above the Arctic Circle for more than 10,000 years.
For our government customers , SAVA delivers global solutions that enhance business processes, lower costs, and take on today’s missions with greater opportunity, agility, and strength.
As a SAVA employee , you will be surrounded by a challenging, yet supportive work environment that is committed to innovation and diversity, two of our most important values. You will also have access to our comprehensive benefits and competitive pay in addition to growth opportunities and excellent retirement options.
We are an equal opportunity employer and comply with all applicable federal, state, and local fair employment practices laws. All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law. If you are an individual with a disability, or have known limitations related to pregnancy, childbirth, or related medical conditions, and would like to request a reasonable accommodation for any part of the employment process, please contact us at job-assist@akima.com or 571-353-7053 (information about job applications status is not available at this contact information).
Source : Akima
