Overview

SAVA is looking for a Cybersecurity Technical Auditor to work at Aberdeen Proving Ground, TX.

Serve as a Cybersecurity Technical Auditor on a major IT support contract for the Army Test and Evaluation Command (ATEC) at the Aberdeen Test Center (ATC). Responsibilities include:

Performs Secure Code Review

Uses HP Fortify to examine code scan results submitted by developers.

Identifies and verifies noted false positives.

Provides comments on scan results and vulnerabilities present, recommend POA&M mitigations.

Conducts Software and Hardware Assessments

Of installed software on isolated VM and assess software against 800-53 controls and AS&D STIG,

Uses Wireshark and Attack surface analyzer to assess software traffic and connections.

Assesses Hardware against named Security Technical Implementation Guides (STIGs) or Security Requirements Guides (SRGs).

Documents assessment results and potential mitigations.

Assists with assessment of subordinate locations against STIG, 800-53 controls, and Army regulations.

STIG checklist reviews for packages managed by the branch.

Provide auditing of technical controls within eMASS.

Responsibilities

Plans and implements security measures to protect computer systems, networks, and data from loss and service interruptions.

Analyzes and documents security risks, breaches, and other cyber security incidents and the damage they cause.

Oversees the monitoring of the computer networks for security issues.

Installs and operates security software and measures to protect systems and information infrastructure, including firewalls and data encryption programs.

May train staff on network and IT security procedures.

Handles complex issues and problems and refers only the most complex issues to higher-level staff.

Possesses comprehensive knowledge of subject matter.

Performs work under minimal supervision.

May act as a lead.

Qualifications

Active Secret security clearance

Bachelor’s Degree in directly related field and at least 5 years of relevant experience; relevant work experience may be substituted for bachelor’s degree.

Must hold one of following DOD 8570 baseline certifications:

CSSP-AU (CEH, CySA+ (formerly CSA+), CISA, GSNA, CFR, PenTest)

IAT III or IASAE (CASP+CE, CISSP (or Associate), CSSLP)

Must possess DOD 8570 baseline certifications meeting the requirements for:

IAT Level II or IAM Level I

Relevant education and/or experience in the assigned program area (Computer Science, Computer/Software Engineering, Computer Information Systems) with specific experience in cybersecurity and/or information assurance.

Specialized experience in:

AS&D STIG compliance

Secure software development/testing

Static and dynamic code analysis

Software assurance, software assessments application threat modeling.

Performing software and hardware risk and vulnerability analysis or a closely related function, such as technical assessment of software for networks, applications and systems.

Using cybersecurity/IT audit tools such as ACAS, HP Fortify, HP Web Inspect, BURP Suite, or other software assurance tools.

This Hybrid position requires applicants to be within 1.5 – 2 hours commute from Aberdeen Proving Ground, MD or FT Cavazos, TX for IT support.

We are an equal opportunity employer and comply with all applicable federal, state, and local fair employment practices laws. All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law. If you are an individual with a disability, or have known limitations related to pregnancy, childbirth, or related medical conditions, and would like to request a reasonable accommodation for any part of the employment process, please contact us at job-assist@akima.com or 571-353-7053 (information about job applications status is not available at this contact information).

Job: Information Technology

Travel: None

Organization: SAVA

Clearance: SECRET

Work Type: Hybrid

Remote: No

ReqID: 2024-13188