Cyber Security Engineer

ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work™

Responsibilities:

• Support the Team Schriever Cybersecurity Office in managing the Schriever Space Force Base TEMPEST, COMPUSEC, and Vulnerability Management programs.
• Provide support in identifying potential network threats and responding to reported security violations.
• Assist in determining the causes of security breaches and provide support to recommended procedural changes to protect data from future violations.
• Assist in educating network users on security procedures.
• General understanding of information system networks and their design, operation, and equipment.
• Interest/aptitude for network security work.
• Familiarity with information security policies and industry best practices
• General understanding of network security hardware devices and vulnerability detection tools including:
• Assured Compliance Assessment Solution (ACAS) network vulnerability scanning tool
• Basic network and security hardware devices (switches, routers, firewalls, servers, encryptors, etc.)

TEMPEST Duties:

• Assist to ensure the Team Schriever TEMPEST program complies with all requirements as defined in AFSSI 7702 and supplementary regulations.
• Assists in conducting and documenting TEMPEST assessments and reports, as well as updating the database and files.

COMPUSEC Duties:

• Assist in ensuring the Team Schriever Computer Security (COMPUSEC) program complies with all annual Cybersecurity Assessment Program requirements as outlined in AFMAN 17-1301.
• Assist in the development, maintenance, and review of network accreditation packages.
• Provide technical analysis and recommendations for product improvement.
• Assist in development, performance, and review of the Risk Analysis for system Security Test and Evaluation (ST&E) plans, procedures, and reports.
• Assist in maintaining current and accurate accreditation status.
• Provide assistance in the awareness of security materials (e.g., posters, reminders, calendars) for dissemination.
• Assist in developing security training material and assist in developing and providing presentations.

Vulnerability Management Duties:

• Support the 21st Communications Squadron and Team Schriever Cybersecurity Office in managing the Schriever Space Force Base Vulnerability Management program.
• Provide support in identifying potential network threats/vulnerabilities and respond to reported security violations.
• Reading, understanding, and dissecting vulnerability information detected by the Assured Compliance Assessment Solution (ACAS) network vulnerability scanning tool.
• Acknowledge and report compliance for all cyber orders in the Space Force's DISPATCH dashboard.
• Detect DISA Security Technical Implementation Guide (STIG) noncompliance and direct detailed, corrective efforts.
• Assist in prioritizing and delegating network vulnerability remediation actions through the creation of work order tickets.
• Create and coordinate approval of Plan of Action & Milestones (POA&M) to outline necessary steps to correct identified network vulnerabilities.
• Assist in determining the causes of security breaches and provide support to recommended procedural changes to protect data from future violations.
• General understanding of information system networks and their design, operation, and equipment.
• Interest/aptitude for network security and vulnerability management work.
• Familiarity with information security policies and industry best practices

Requirements

• Active U.S. Government Secret Security Clearance
• Current DoD Workforce Innovation Directorate (DoD 8140) IAT Level II Certification
• Bachelor's degree and two to four years of experience or additional experience in lieu of a degree

Assesses, analyzes and implements information assurance and security engineering systems. Defines requirements for business continuity, operations security, cryptography, forensics, regulatory compliance, internal counter-espionage (insider threat detection and mitigation), physical security analysis (including facilities analysis and security management) to best protect company assets. Assesses and mitigates system security threats and risks throughout the program life cycle. Validates system security requirements definition and analysis. Implements and validates security designs in hardware, software, data, and procedures. Verifies security requirements; performs system certification and accreditation planning, testing, and liaison activities. Supports secure systems operations and maintenance. Requires a Bachelor's degree and 2-4 years of experience or equivalent.

We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.

EEO Statement

ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.