Job Requirements
Monterey, CA
Top Secret/SCI Polygraph not specified
Senior Level Career (10+ yrs experience)
$95,000 - $125,000
Job Description
Description
•Perform assigned CS duties associated with unclassified, classified Microsoft Windows systems
•Perform assigned CS duties associated with unclassified and classified network systems
•Perform assigned CS tasks using established Federal, DOD and Navy CS policies and procedures
•Perform work that is varied, may be somewhat difficult in nature and involves limited technical direction
•Perform Cyber Security Officer duties to include incident handling, event management, network analysis, system-level auditing per established Federal, DOD and Navy CS policies and procedures
•Coordinate with DOD and Navy agencies for resolution of all CS incidents and event management issues
•Scan, monitor, audit, harden and implement CS safeguards for MS Windows systems in accordance with Federal, DOD and Navy CS policy and procedures
•Report unauthorized physical and electronic access to MS Windows system
•Perform MS Windows system device log analyses for unauthorized access or unauthorized elevation of permissions and note any deviance from normal system activities
•Assess MS Windows system CS defensive posture, report gaps, and recommend solutions to harden systems per Federal, DOD and Navy CS policy and procedures
•Provide information to ISSM in support of Certification and Accreditation (C&A) data calls and compliance initiatives
•Assist in conducting CS safeguard tests in accordance with ISSM guidance
•Participate in CS risk assessments
•Participate in CS Continuity of Operations planning, testing and evaluation
•Ensure necessary reporting is captured and maintained for evaluation per ISSM guidance
•Ensure conformity of password policies per Federal, DOD and Navy CS policy and procedure
•Provide and monitor security counter measures per Federal, DOD and Navy CS policy and procedure
•Assist with coordination of CS activities associated with remote access per ISSM guidance
•Comply with Federal, DOD and Navy CS policy and procedure regarding the proper handling of personal, confidential and privacy act information
•Attend meetings
•Perform work with limited technical direction and in accordance with ISSM guidance
•Coordinate timely notification and resolution of pending CS issues to include FISMA POA&M, pending items in the Vulnerability Remediation Asset Manager (VRAM)
Skills
Windows, Active directory, System administrator, Exchange, Vmware, Windows server, Systems engineering, Exchange server, Microsoft exchange, Azure, Exchange o365, Powershell, Windows administration, Infrastructure, Microsoft, Server administrator, Sccm, Mdm, Ms exchange, Security, Powershell scripting, Scripting, POA&M, A&A, STIG, VRAM, vulnerability management, RMF, ATO, Office 365, Linux, Cloud, O365, Automation, Troubleshooting, CISSP, CISM, GLSC, information assurance
Top Skills Details
Windows,Active directory,System administrator,Exchange,Vmware,Windows server,Systems engineering,Exchange server,Microsoft exchange,Azure,Exchange o365,Powershell,Windows administration,Infrastructure,Microsoft,Server administrator,Sccm,Mdm,Ms exchange,S
Additional Skills & Qualifications
1.Leverage the Windows System Baseline Activity
Performance Standard: The Windows Systems are monitored for Baseline Compliance, and the reports developed from this data are clear, understandable and timely.
Assessment Method: Review of reports.
2.Leverage the Windows System Baselines to Detect Anomalies Associated With System
Performance Standard: The Windows Systems are configured for Baseline Compliance, and the reports developed from this data are clear, understandable and timely.
Assessment Method: Review of reports.
3.Conduct Daily Inspections of the Windows Systems Baselines
Performance standard: daily inspections are completed and documented, and reports are developed presenting the outcome of the daily inspections.
Assessment Method: Review of reports.
4.Conduct daily inspections of the Windows Systems device logs for unauthorized electronic access and/or permissions escalation
Performance Standard: The system device logs are reviewed for violations of the access policy, and all violations are documented and reported as required by policy.
Assessment Method: Review of logs and reports.
5.Work with third party government agencies to report, resolve and prevent CS incidents and events of concern
Performance Standard: Respond to all incidents and events per policy, and any incident or event is reported to all required government agencies within 24 hours.
Assessment Method: Review of reports and actions taken
6.Provide weekly status report (WSR) to the ISSM. The WSR shall provide details around the following:
•Results of physical and electronic inspections
•Percent of systems evaluated
•Any modification to system baselines
•Synopsis of anomalies observed
•Synopsis of CS incidents detected and being worked
•Synopsis CS events detected and being worked
•Known vulnerabilities
•Recommendations to shore up system device CS defensive posture
•Any other pertinent information to the day’s CS detection activity
Experience Level
Expert Level
•Perform assigned CS duties associated with unclassified, classified Microsoft Windows systems
•Perform assigned CS duties associated with unclassified and classified network systems
•Perform assigned CS tasks using established Federal, DOD and Navy CS policies and procedures
•Perform work that is varied, may be somewhat difficult in nature and involves limited technical direction
•Perform Cyber Security Officer duties to include incident handling, event management, network analysis, system-level auditing per established Federal, DOD and Navy CS policies and procedures
•Coordinate with DOD and Navy agencies for resolution of all CS incidents and event management issues
•Scan, monitor, audit, harden and implement CS safeguards for MS Windows systems in accordance with Federal, DOD and Navy CS policy and procedures
•Report unauthorized physical and electronic access to MS Windows system
•Perform MS Windows system device log analyses for unauthorized access or unauthorized elevation of permissions and note any deviance from normal system activities
•Assess MS Windows system CS defensive posture, report gaps, and recommend solutions to harden systems per Federal, DOD and Navy CS policy and procedures
•Provide information to ISSM in support of Certification and Accreditation (C&A) data calls and compliance initiatives
•Assist in conducting CS safeguard tests in accordance with ISSM guidance
•Participate in CS risk assessments
•Participate in CS Continuity of Operations planning, testing and evaluation
•Ensure necessary reporting is captured and maintained for evaluation per ISSM guidance
•Ensure conformity of password policies per Federal, DOD and Navy CS policy and procedure
•Provide and monitor security counter measures per Federal, DOD and Navy CS policy and procedure
•Assist with coordination of CS activities associated with remote access per ISSM guidance
•Comply with Federal, DOD and Navy CS policy and procedure regarding the proper handling of personal, confidential and privacy act information
•Attend meetings
•Perform work with limited technical direction and in accordance with ISSM guidance
•Coordinate timely notification and resolution of pending CS issues to include FISMA POA&M, pending items in the Vulnerability Remediation Asset Manager (VRAM)
Skills
Windows, Active directory, System administrator, Exchange, Vmware, Windows server, Systems engineering, Exchange server, Microsoft exchange, Azure, Exchange o365, Powershell, Windows administration, Infrastructure, Microsoft, Server administrator, Sccm, Mdm, Ms exchange, Security, Powershell scripting, Scripting, POA&M, A&A, STIG, VRAM, vulnerability management, RMF, ATO, Office 365, Linux, Cloud, O365, Automation, Troubleshooting, CISSP, CISM, GLSC, information assurance
Top Skills Details
Windows,Active directory,System administrator,Exchange,Vmware,Windows server,Systems engineering,Exchange server,Microsoft exchange,Azure,Exchange o365,Powershell,Windows administration,Infrastructure,Microsoft,Server administrator,Sccm,Mdm,Ms exchange,S
Additional Skills & Qualifications
1.Leverage the Windows System Baseline Activity
Performance Standard: The Windows Systems are monitored for Baseline Compliance, and the reports developed from this data are clear, understandable and timely.
Assessment Method: Review of reports.
2.Leverage the Windows System Baselines to Detect Anomalies Associated With System
Performance Standard: The Windows Systems are configured for Baseline Compliance, and the reports developed from this data are clear, understandable and timely.
Assessment Method: Review of reports.
3.Conduct Daily Inspections of the Windows Systems Baselines
Performance standard: daily inspections are completed and documented, and reports are developed presenting the outcome of the daily inspections.
Assessment Method: Review of reports.
4.Conduct daily inspections of the Windows Systems device logs for unauthorized electronic access and/or permissions escalation
Performance Standard: The system device logs are reviewed for violations of the access policy, and all violations are documented and reported as required by policy.
Assessment Method: Review of logs and reports.
5.Work with third party government agencies to report, resolve and prevent CS incidents and events of concern
Performance Standard: Respond to all incidents and events per policy, and any incident or event is reported to all required government agencies within 24 hours.
Assessment Method: Review of reports and actions taken
6.Provide weekly status report (WSR) to the ISSM. The WSR shall provide details around the following:
•Results of physical and electronic inspections
•Percent of systems evaluated
•Any modification to system baselines
•Synopsis of anomalies observed
•Synopsis of CS incidents detected and being worked
•Synopsis CS events detected and being worked
•Known vulnerabilities
•Recommendations to shore up system device CS defensive posture
•Any other pertinent information to the day’s CS detection activity
Experience Level
Expert Level
group id: 10105424
