ACAS Administrator (TS/SCI clearance)

R-00185274

Description

We modernize today's systems to outsmart tomorrow's challenges. Come #OutsmartOutdo at Leidos!

The TS/SCI cleared ACAS Administrator shall support the Client in the design and implementation of Assured Compliance Assessment Solution (ACAS) for the client's networks. The Administrator will train operators and Information Assurance personnel to maintain and operate ACAS tool functionality.

This is a mid-to-senior level role requiring demonstrated leadership in vulnerability management operations within DoD environments and will require to perform job duties onsite at Langley Air Force Base, VA.

Roles and Responsibilities

• Assess current ACAS implementations for each network and recommend improvements to scanning coverage, architecture, and policy configuration.
  
• Document the design of the ACAS solution for each network.
  
• Lead and guide team members in troubleshooting and resolving operational issues within the ACAS environment.
  
• Develop reporting dashboard designs and reports tailored for three audiences: Leadership; Cybersecurity Staff; and System Administrators.
  
• Generate, analyze, and present vulnerability assessment reports and risk mitigation updates to and ISSMs/ISSOs.
  
• Ensure networks receive timely updates from the DISA/DoD Patch Repository or Tenable; implement and track IAVA compliance.
  
• Implement reporting dashboard designs and generate environment-specific compliance and vulnerability reports.
  
• Verify scheduled scans achieve required coverage of intended assets and complete successfully; remediate scan failures.
  
• Maintain Nessus scanner, Nessus Agents, Nessus Network Monitor, and PVS connectivity with the associated Security Center (SC) across Linux and Windows environments.
  
• Create and manage ACAS organizations, repositories, and scan zones; import, upload, and validate scan results.
  
• Coordinate with ISSMs, ISSOs, system owners, and administrators to drive vulnerability remediation efforts and track POA&M items.
  
• Ensure ACAS operations remain compliant with DoD security policies and DISA STIGs.
  

Basic Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field - or additional years of equivalent hands-on experience will be considered in lieu of a degree.
  
• Active DoD Top Secret/SCI clearance required.
  
• Active DoD 8570/8140 IAT Level III or IAM Level II certification: CISA, GSE, SCNA, CISSP (or Associate), CAP, GSLC, or CISM.
  
• Foundational security certification such as CompTIA Security+ required as a baseline if higher certifications are in progress.
  
• ACAS official training.
  
• 3+ years of hands-on ACAS and/or Nessus administration experience in a DoD or federal environment.
  
• 5+ years supporting, configuring, and administering Red Hat Enterprise Linux (RHEL) in an enterprise environment.
  
• Experience with DoD Risk Management Framework (RMF) and eMASS, including developing RMF packages and maintaining Plan of Action & Milestones (POA&M).
  
• Demonstrated experience managing vulnerability scanning across large enterprise networks with 1,000+ assets.
  
• Experience with virtualized environments (VMware or equivalent).
  
• ACAS Security Center (SC), Nessus Vulnerability Scanners (NVS), and Passive Vulnerability Scanner (PVS) administration.
  
• Red Hat Enterprise Linux (RHEL) - installation, hardening, and maintenance.
  
• Application of DISA STIGs and SCAP compliance tooling.
  
• IAVA Management, Implementation, and remediation tracking.
  
• Experience with eMASS for artifact submission, control compliance, and system authorization packages.
  
• Working knowledge of NIST SP 800-37/800-53 and DoDI 8510.01 RMF processes.
  
• Familiarity with OPORD/FRAGO support and military operations security requirements.
  

​

Preferred Qualifications

• Scripting proficiency in NASL, Python, or Bash for scan automation and report customization.
  
• Experience with PVS deployment, tuning, and passive network traffic analysis.
  
• Familiarity with DISA/DoD Patch Repository processes and Tenable plugin/feed update workflows.
  
• Experience presenting technical findings and risk summaries to executive and non-technical audiences.
  
• Exposure to SIEM platforms (e.g., Splunk, Security Onion) and integration with ACAS scan data.
  
• Experience with Microsoft Visio for network architecture and ACAS component diagramming.
  
• Knowledge of SE Linux, AppArmor, or other access control frameworks.
  
• Familiarity with cloud environments (AWS GovCloud or Azure Government) and scanning in hybrid infrastructure.
  

#DINM

DABAOPP1

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.
Original Posting: June 11, 2026

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range: Pay Range $87,100.00 - $157,450.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com .

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits .

Securing Your Data

Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com .

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission .

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.