Huntington Ingalls Industries Cybersecurity Network SME - 18556 in Kaiserlautern, Germany
Cybersecurity Network SME - 18556
Position Location Kaiserlautern, Germany
Requisition # 18556
# of Openings 1
HII-Mission Driven Innovative Solutions, Inc. (HII-MDIS)provides mission-critical engineering and technical service to Information Technology, Federal Civilian, and National Security, Aerospace & Defense and International government and commercial customers at over 100 locations worldwide.
HII-MDIS is currently seeking a Cybersecurity Support Subject Matter Expert (SME) to work out of their Einsiedlerhof, Germany office.
The Cybersecurity Support SME will provide cybersecurity support for all Warrior Preparation Center (WPC) networks. The Cybersecurity Support SME will support the sustainment of the accredited cybersecurity posture of the WPC’s domain enclaves by actively tracing and maintaining each network’s cyber-vulnerability level and system compliance to applicable DISA STIGS and Security Requirements Guides (SRGs). The Cybersecurity Support SME will serve as the operational and maintenance lead for the WPC’s Assured Compliance Assessment Solution (ACAS) systems and scan/report production processes.
Duties and Responsibilities (to include but not be limited to the following):
Provide technical inputs for Cyber Vulnerability Management (CVM) and Risk Management Framework (RMF) Plans of Action and Milestones (POA&Ms) regarding remediation timelines and vulnerability mitigation to sufficient detail.
Provide complete scan reports of each network monthly, and after any major network reconfiguration, in the required format for reporting/submission into the appropriate CVM repository.
Troubleshoot and research problems with systems that do not provide a complete or fully credentialed scan result and resolution.
Accomplish vulnerability remediation (e.g., patches and updates) as well as STIG/SRG configuration compliance actions on domain core services systems and workstations in coordination with and support of the WPC SC Directorate personnel.
Maintain list of active hosts on the different networks and the corresponding basic inventory listings of software used in order to determine which STIGS and/or SRGs should be applied.
Research proposed configuration updates/changes and apply a “patch and test” approach as appropriate to determine if a particular configuration update/change will have a detrimental effect on the WPC processes and mission, and make a determination on application in the operational environment.
Accomplish STIG/SRG checklist updates and reporting quarterly, tracing both automated compliance scans and manual STIG checklists as applicable.
Track and report compliance of configuration changes based on United States Cyber Command (USCYBERCOM)-driven tasking orders or other DoD short notice threat response notifications.
Qualifications and Experience:
Bachelor’s degree in Information Technology (IT) or Cybersecurity discipline and at least 10 years’ experience as a Microsoft Certified Solutions Expert (MCSE) or Red Hat Certified System Administrator (RHCSA).
Experience with ACAS or Tenable Nessus vulnerability scanners.
Familiarity with Microsoft Windows environment, UNIX, Linux, Hyper convergence technology, VMWare and Virtual Desktop Infrastructure (VDI) zero client architecture.
Extensive knowledge of working with MacAfee.
Experience providing technical inputs for Cyber Vulnerability Management (CVM) and Risk Management Framework (RMF) Plans of Action and Milestones (POA&Ms) regarding remediation timelines and vulnerability mitigation.
Experience providing complete network scan reports.
Experience troubleshooting and researching system problems.
Experience with vulnerability remediation (e.g., patches and updates) and STIG/SRG configuration compliance actions on domain core services systems and workstations.
Experience maintaining a list of active hosts on different networks and a corresponding basic inventory list of software for determining which STIGS and/or SRGs should be applied.
Experience researching configuration updates/changes and applying a “patch and test” approach as appropriate to determine if a particular configuration update/change will have a detrimental effect.
Experience accomplishing STIG/SRG checklist updates and reporting.
Experience tracking and reporting compliance of configuration changes based on USCYBERCOM-driven tasking orders or other DoD short notice threat response notifications.
All candidates will be subject to a pre-employment background investigation and drug screening per HII requirements.
Possess and maintain an active Secret clearance.
The selected applicant will be subject to a security investigation and must meet eligibility requirements for access to classified information.
Huntington Ingalls Industries is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected class.