Vulnerability Management Specialist

Vulnerability Management Specialist

Location: Little Rock United States

Job Description:

Job Description

Description

SAIC has an opportunity for an ACAS Vulnerability Management Specialist to support the US Army Corps of Engineers Revolutionary IT Services (USACE RITS) program.

NOTE: This is a hybrid role, with ~1 day a week onsite in the Washington DC, Vicksburg MS, Little Rock AR or Tulsa OK areas and the other days work from home / virtual / remote position.

The Ideal Candidate will serve as a member of the Assured Compliance Assessment Solution (ACAS) team responsible for operating and maintaining the USCAE ACAS instance.

Overall Duties Include:

• Deploy, maintain, and perform tuning of ACAS scanners to meet current and future needs, IAW latest Best Practice Guide and CORA/CCRI requirements
• Develop / create, deploy, and manage ACAS scan configurations IAW ACAS BPG
• Conduct scans and provide detailed reporting to leadership
• Ensures scheduled scans are covering 100% of intended assets and are being run successfully
• Ensure all ACAS scanners, components and Security Center are operational and reporting properly
• Perform required vulnerability scans and create repositories, queries, and dashboards as necessary to ensure vulnerability report information is available
• Investigate false positives or any invalid scan data results
• Develop tracking mechanism for false positives and track false positives until the finding is corrected; provide results upon resolution
• Upgrade Security Centers and Scanners to the latest DISA-approved version, as well as having the latest patches installed as they are approved and released
• Continuously monitor the performance and integrity of ACAS, assess scan times, and make changes to improve performance

Qualifications

Education Requirements:

• BS degree and two (2) years or more experience; four (4) years of experience accepted in lieu of degree

Experience Requirements:

• Scripting or Application programming interface (API) (i.e. PowerShell, Python, etc.)
• Proven experience with security and auditing tools for Windows and Linux operating systems such to include: installing, configuring, maintenance, backups, and restore
• Experience in supporting, configuring, administering Assured Compliance Assessment Solution (ACAS) and/or Nessus

Certification Requirements:

• Must have one (1) current DoD 8140 Basic Systems Security Analyst certification (i.e. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, OR SSCP)

Clearance Requirement:

• Active Secret Security Clearance

Overview

SAIC accepts applications on an ongoing basis and there is no deadline.

SAIC is a premier Fortune 500 mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets includes secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.

We are approximately 24,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.5 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom.