Abacus Technology is seeking an Information Security Analyst to support security and information assurance activities for the Aberdeen Proving Ground. This is a full-time position.

Provide cyber security services to protect information and information systems from unauthorized access and to protect the data within systems. Validate technical standards and security policy for LAN topologies and components; identify and remediate security vulnerabilities. Administer Host-Based Security System (HBSS). Perform scanning, analysis and remediation with the Enterprise provided tool and provide reports. Provide reports and documentation in support of the submission (and continuous monitoring) for the RMF. Assist with preparation for DISA CCRIs and other DoD or Army Cybersecurity related inspections/evaluations. Provide support for the DoD PKI service. Provide DoD PKI services including directory support, certification validation, registration, interface to related Army systems, hosting of PKI-enabled servers, and required key management services, as well as PKI solutions for email, web applications, file transfer, and Virtual Private Networks. Perform vulnerability scans weekly. Manage the IAVM program for all RNEC-Aberdeen managed devices for installation and customer activities. Provide patches for each authorized PC baseline and server, as required. Develop Mitigation Action Plan (MAP) and IAVM POA&Ms. Perform network, workstation, and server scans and compile vulnerability reports to facilitate corrections. Plan, detect, respond, investigate, and report malicious and unauthorized activities. Manage cybersecurity hardware and software changes for the installation. Provide host-based firewall management for enterprise managed assets and workstations.

1 years experience in a cyber security role including experience with ACAS, HBSS, and RMF. Bachelor’s degree in a related field desired. Must be Security certified. Must hold a Microsoft certification or be able to obtain the certification with six months of start date. Hands-on experience and training on the verification and enforcement of STIG identification and remediation. Hands-on experience and training on the verification and enforcement of IAVM identification and remediation. Experience with reporting, scanning and analysis using ACAS. Knowledge of C&A processes and the RMF. Experience with eMASS. Knowledge of PKI. Knowledge of CCRI or similar functions/audits. Knowledge of Incident Response Plans (IRP) and incident response executions. Possess excellent technical writing, critical thinking/analytical, oral and written communication skills. Knowledge and experience communicating IA concepts to technical and nontechnical personnel. Able to develop technical documents and produce system design documentation. Must have excellent customer service skills; be able project a positive image and professional manner at all times; and be able to work within the confines of a set time schedule. Must be a US citizen and hold a current Secret clearance.