Description JCIP Technical Reviewers play a pivotal role in evaluating the cybersecurity posture of enterprise environments across the Intelligence Community (IC). They conduct comprehensive assessments through detailed analysis of vulnerability scans to ensure compliance with Intelligence Community Directives (ICDs), IC Technical Implementation Guides (TIGs), Security Technical Implementation Guides (STIGs), Security Requirement Guides (SRGs), and NIST 800-53 rev 5 security controls. Utilizing automated tools, including Tenable and Splunk, these professionals perform documentation reviews, employ checklists and guides to write reports and develop a qualitative risk assessment on target organizations. Their assessments examine the mission owners' critical capabilities and mission impacts if secure operations lack security protections needed to defend their cyber infrastructure and mitigate high-risk vulnerabilities to the enterprise. Beyond inspection duties, Technical Reviewers contribute to maturing organizational processes, training initiatives, and program-wide support through cross-functional collaboration. This is an on-site role. Must be willing to travel up to 30%, including local travel within the National Capital Region (NCR) of Northern Virginia, Maryland, and Washington, DC. Roles and Responsibilities: JCIP Reviewers are integral to conducting inspections of environments across the Intelligence Community (IC). They are responsible for: * Interacting with leadership and site technical staff in advance of conducting inspections to facilitate scoping, data to support security controls assessment input, and execution of operational inspection plans.
* Responsible for interviewing organizational subject matter experts in conducting STIG, SRG, and IC policy checklists. * Collect data in support of reviewing a comprehensive Threat Informed Critical Controls List (TICCL), provide written input on review of required security controls, potential vulnerability exploitation, and how MITRE ATT&CK© techniques are plausibly successful based on organizational weaknesses. Ensure inputs link back to security controls.
* Participating in the planning, execution, and reporting of security audits and network vulnerability assessments with minimal supervision
* Assisting in preparation of assessment deliverables -Security Risk Assessments input, compliance data, STIG data, etc.
* Communicating on impact of vulnerabilities verbally, through presentations and written deliverables
* Plan, execute, and report on information technology, privacy, and operational reviews to identify mission, privacy, security, compliance, information technology, and regulatory risks.
* Familiar with a variety of cybersecurity concepts, practices, and procedures. Relies on extensive experience and judgment to plan and accomplish goals.
The Hypervisor/Virtual and Storage reviewer will be responsible for Virtual Machine Compliance and Hardening. They must have knowledge in applying security hardening guidelines for VMs and hypervisors, following standards such as those provided by the Center for Internet Security (CIS). Requirements Required Qualifications * TS/SCI
* Master's degree in a relevant field or an additional 5 years of work experience in lieu of a degree.
* Certification in DoD 8570.01-M Cybersecurity workforce, compliance with DoD Directive 8140 Cyberspace Workforce Management, and IAT Level III.
* 5 years of experience in system administration, specifically with Hypervisor platforms such as ESXi, Hyper-V, Storage Area NetworkS (SAN). * 12 years of experience in Cyber/Information Assurance, with a comprehensive understanding of cybersecurity disciplines including but not limited to the Risk Management Framework, DevSecOps, and cybersecurity engineering. Demonstrate an understanding of: * vSphere, vCenter, and vSAN. The reviewer must have a strong understanding of network and storage technologies as they relate to virtualization.
* Virtualization Management and Scripting Proficiency: Expertise in managing hypervisor environments (e.g., VMware ESXi, Microsoft Hyper-V, KVM) and automating tasks with scripting languages such as PowerShell, Bash, or Python. This includes the ability to efficiently manage virtual machine (VM) configurations, templates, and snapshots to optimize performance and security.
* Hypervisor Security and Configuration Auditing: Skilled in conducting thorough security audits of hypervisor configurations and VM deployments. Knowledgeable in securing hypervisor management interfaces, implementing network segmentation within virtualized environments, and adhering to virtualization-specific security best practices such as securing VM migrations and isolating management networks.
* Virtual Network Security and Monitoring: Proficiency in managing and securing virtualized network functions, including virtual switches, firewalls, and routers. Ability to use tools for monitoring virtual network traffic, detecting anomalies, and ensuring the integrity of data flow between VMs and external networks. Familiarity with implementing micro-segmentation to enhance security within the virtual environment.
* Resource and Access Control in Virtual Environments:
* Experience in managing resource allocation to VMs, including CPU, memory, and storage, to prevent resource exhaustion attacks. Expertise in implementing role-based access control (RBAC) for hypervisor management and ensuring that access to virtualization management platforms is securely controlled.
* Proficiency in deploying and managing security tools within VMs, including antivirus, intrusion detection systems (IDS), and intrusion prevention systems (IPS), to comply with NIST, ICD, SRG, and industry standards.
* Patch Management and Vulnerability Remediation: * Demonstrated experience in managing patching processes for both hypervisors and guest operating systems. This includes the ability to automate patch deployment, monitor for new vulnerabilities, and quickly remediate identified security issues to maintain a strong security posture.
* Disaster Recovery and Business Continuity Planning: * Skills in designing and implementing disaster recovery plans for virtualized environments. This includes knowledge of backup and replication strategies for VMs, testing disaster recovery plans, and ensuring minimal downtime in case of system failures.
* Secure Configuration of Virtual Appliances and Services: * Ability to securely configure virtual appliances and services running on hypervisors, ensuring that they are deployed with the least privilege and do not introduce additional vulnerabilities into the environment.
* Storage Area Network experience includes knowledge of deduplication, storage capacity and resilience requirements.
* Strong independent work ethic (auditor mentality), exceptional oral and written communication skills, and the ability to work unsupervised. Desired Qualifications: * Experience in engineering and operations & maintenance of enterprise ESXi, Hyper-V, and Storage technologies. * Proficiency in using advanced vulnerability assessment and reporting tools such as Tenable, Splunk, and Tableau.
* Demonstrated ability to operate across departments to implement cybersecurity principles effectively.
* Capable of multitasking with efficient time management and possessing a comprehensive understanding of cyber threats, vulnerabilities, and network security methodologies.
Founded in 2011, ProCleared LLC is a dedicated Service-Disabled Veteran-Owned Small Business (SDVOSB) serving the Intelligence Community and the Department of Defense. We pride ourselves on swiftly delivering solutions tailored to government needs. Our commitment extends beyond our clients; we foster an empowering work environment and offer a comprehensive benefits package, including 100% employer-paid premiums for health, dental, vision, and life insurance, Paid Time Off, federal holidays, and a competitive 401k match. At ProCleared, we value our people, partners, and purpose.