AbleVets

  • ACAS Vulnerability and Scanning Analyst – Jr., Mid, Senior

    Job Locations US-SC-Charleston
    Job ID 2018-2222
  • Overview

    AbleVets, LLC is a fast-growing Service Disabled Veteran Owned Small Business (SDVOSB) providing healthcare information technology services and resources to help the VA and DoD improve the lives of the people they serve. AbleVets has an opportunity for an experienced, motivated Assured Compliance Assessment Solution (ACAS) Vulnerability and Scanning Analyst to support projects for our customers. There are multiple roles open at the junior, mid, and senior levels.  Positions will be located on site at our customer’s facility in Charleston, South Carolina.

    Essential Functions and Job Responsibilities

    Duties and responsibilities include:

    • Managing and sustaining ACAS objects to include:
      • Creating and updating site and POR repositories to include STIG, Supported, Unsupported, Site/POR and Fragile repositories
      • Creating and updating CNDSP asset lists based on updated user RFIs
      • Creating and updating scan zones based on SNAP directives and IP plan notifications from Program Support
      • Adding and pushing plugins to Nessus scanners based on notifications from the NSOC Linux administrators
      • Associating Nessus scanners to appropriate scan zones
    • Creating ACAS user accounts
      • Determining appropriate group associations by working with Program Support and subscribers
      • Updating and resetting passwords as needed
      • Revalidating user accounts as directed by Program Support
    • Assisting ACAS users with credentialed scan issues
      • Reviewing/submitting POA&Ms for past due Information Assurance Vulnerability Alerts/Bulletins
      • Reviewing and providing recommendations for mitigation strategy implementations for proper safeguards
    • Reviewing for formatting issues, spelling and IAVM information accuracy
      • Reviewing and providing recommendations for mitigation strategy implementations for proper safeguards
      • Reviewing for formatting issues, spelling and IAVM information accuracy
    • Analyzing vulnerability scan results and subsequent reporting using the ACAS application
    • Managing, disseminating, interpreting and tracking compliance with IAVM’s
    • Providing TASKORD compliance data to Communications Officer
    • Maintaining existing standard operational procedure (SOP) documentation and drafting new SOPs and other documentation as necessary
    • Assisting subscribers by troubleshooting ACAS application functionality and infrastructure
      • Authentication issues, login issues, invalid permissions, inaccurate group associations, and scan zone issues
    • Uploading and maintaining DISA SCAP content
      • SCAP content uploaded monthly and by user request
    • Sending ASR/ARF reports to users as requested
    • Sending Nessus files as requested
    • Monitoring VAAT inbox
    • Monitoring and assisting with tickets submitted in the VAAT Remedy queue
    • Conducting vulnerability scans and providing reports for assigned PORs: HAIMS, SPAWAR, AVHE, DMLSS, JLV, and AHLTA
      • Performing routine and ad-hoc scans using the ACAS application
      • Uploading subscriber reports to KBS
    • Attending and participating on monthly subscriber compliance calls conducted by Program Support
    • Monitoring the health of the SecurityCenters and associated scanners
      • Initiating SSH connections into Nessus scanners for troubleshooting purposes
      • Notifying Linux administrators of outages
    • Providing subscriber issuance compliance metrics to the Cyber Operation Center (CyOC)
    • Completing the VAAT portion of the SOVT process by initiating SSH connection into the Nessus scanner for connectivity verification

    Qualifications

    Multiple levels available. Qualifications for each are:

    • Junior: Associate’s degree in Computer Science or technology related field and one (1) year of vulnerability scanning experience.
    • Mid: Bachelor’s degree in Computer Science or technology related field and three (3) years of experience using ACAS or VS tools. An additional six (6) years of relevant experience may be substituted for degree requirement.
    • Senior: Bachelor’s degree in Computer Science or technology related field and six (6) years of experience using ACAS or VS tools. An additional six (6) years of relevant experience may be substituted for degree requirement.

    In addition to the above, candidates must also possess:

    • Active DOD Secret Clearance is required
    • Must meet requirements of DoD Directives 8570.01M
    • Must be proficient with desktop programs such as Adobe Acrobat, MS Excel, MS Word
    • Must possess a high attention to detail
    • Self-starter that can work under general direction in a highly collaborative, team-based environment
    • Ability to travel if necessary

    Preferred/Desired Skills:

    • Experience managing an ACAS infrastructure is a plus
    • Experience working within a large ACAS deployment

    EEO Statement

    AbleVets LLC appreciates your interest in our company as a place of employment.  We are proud to be an equal opportunity/affirmative action employer and are committed to hiring and retaining a diverse workforce.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability, veteran status, or any other protected class.  AbleVets is a VEVRAA Federal Contractor. 

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed