IAVM STIG Security Compliance Technician

Keaki Technologies

Yesterday
Top Secret
Unspecified
Unspecified
Pensacola, FL (On-Site/Office)
The Alaka`ina Foundation Family of Companies (FOCs) is looking for a IAVM STIG Security Compliance Technician to provide research support administration services for our government customer in Pensacola, Florida .

DESCRIPTION OF RESPONSIBILITIES:
  • Ensure Assured Compliance Assessment Solution (ACAS) benchmarks and scans, Security Technical Implementation Guide (STIGs) and Checklists, Defense Information Systems Agency (DISA) Security Compliance Checker (SCC) Security Content Automation Protocol (SCAP) Scanning Utilities and all A& A artifacts are provided at the agreed upon schedule for network administration, server administration and End User Device (EUD) management.
  • Ensure Information Assurance Vulnerability Management (IAVMs) are closed within 72 hours of published notification or provide mitigation strategy to NMTOC ISSM with weekly progress reports until vulnerability is sufficiently closed.
  • Collaborate with NMOTC ISSM to develop mitigation strategies, perform systems log analysis, and remediate vulnerabilities.
  • Utilize PowerShell to develop and deploy scripts to monitor and mitigate security vulnerabilities in Operating Software (OS) and software packages installed on system.
  • Monitor and report on the status of vulnerability management activities while remediating PO A& M actions with weekly reviews of CKL files to minimize findings.
  • Ensure STIG compliance for all servers, including manual DoD STIGs on VMWARE hosts.
  • Coordinate with cybersecurity teams to prioritize and address IAVMs in accordance with compliance requirements and industry standards.
  • Ensure security metrics for the operating systems and supporting services meet the 'passing requirement' for Command Cyber Security Readiness Inspections.
  • Develop network security control procedures based on Security Requirements set forth by the DISA, DHA, and local NMTOC Policies
  • Implement security controls, monitor, and respond to security alerts, analyze current technology packages for vulnerabilities and exposures.
  • Utilize ACAS suite to perform weekly vulnerability scanning and compliance checks on the MedCOI network.
  • Monitor cybersecurity information channels to observe the latest developments in vulnerabilities, exploits, and countermeasures. Stay up to date with cybersecurity advisories, vulnerability databases, and best practices to effectively manage and mitigate vulnerabilities.
  • Medical Devise Security Administration to include the following:
    • Coordinate with medical staff and vendors to manage and support data integration with medical equipment.
    • Ensure the availability and reliability of data interfaces between medical devices and systems.
    • Collaborate with medical staff to optimize data-driven processes and workflows.
    • Apply Information Assurance policies, procedures, and security measures to all medical systems.
  • Virtual Machine Administration, to include the following:
    • Mange and maintain comprehensive VMware and Azure virtual infrastructure to support efficient data processing and storage for mid-sized organizations.
    • Monitor and maintain virtual machine performance, capacity, availability, and compliance per DoD guidelines.
    • Monitor enterprise virtual machines for CPU, memory, disk and network utilization.
    • Troubleshoot and resolve virtual machine-related issues.
    • Develop and maintain site documentation for all enterprise virtual servers and switches.
    • Configure and maintain NMOTC Splunk infrastructure for data collection, analysis, and reporting.
    • Create and manage Splunk dashboards for monitoring and troubleshooting.
    • Support the analysis, research, architecture, development, integration, accreditation, and deployment of IT data hosting and transport environments across all levels of complexity and security levels.
    • Support the integration between disparate data environments and associated security protocols for cross-domain data transfers.
    • Support the development and deployment of mobile computing solutions.
  • Storage Area Networks (SAN) Management and Contingency Planning, to include the following:
    • Design, implement, and manage SAN infrastructures to ensure efficient reliable data storage.
    • Implement backup and recovery solutions to safeguard critical data.
    • Monitor backup operations, perform data restores, and ensure backup integrity.
    • Manage DLT tapes and DMLSS tape inventory. Perform regularly scheduled tape restoration integrity tests.
  • Contingency Planning, to include the following:
    • Develop and maintain data contingency plans to determine actions needed, minimize the impact of systems failures or disasters and execute failover capabilities per DHA guidelines.
    • Establish disaster recovery strategies and test their effectiveness semi-annually.
    • Document and update contingency plans and procedures.
    • Participate in capacity planning and performance discussions and assist in the development and execution of disaster recovery exercises.
    • Participate in annual COOP exercises locally and in remote sites to perform actual restoral verifications.
  • Internet Information Services (IIS) Administration, to include the following:
    • Manage and administer IIS for hosting and managing web applications.
    • Configure and optimize IIS settings for performance and security.
    • Troubleshoot and resolve IIS-related issues.
  • Dynamic Host Configuration Protocol (DHCP) and Print Management, to include the following:
    • Design, implement, and manage DHCP services.
    • Ensure efficient IP address allocation and management within the network.
    • Monitor and troubleshoot DHCP-related issues.
    • Administer and manage print services, including printer deployment, configuration, and troubleshooting.\
    • Monitor and optimize print resources for efficiency and cost effectiveness.
  • Other duties as assigned by Supervisor.

REQUIRED DEGREE/EDUCATION/CERTIFICATION:

Bachelor's degree in network administration with ten (10) years of experience in Information Technology (IT)

REQUIRED SKILLS AND EXPERIENCE:
  • Knowledge and experience in managing virtual machine support using industry standard virtual machine software/hardware to include VMWARE and Microsoft Hypervisor.
  • Experience with installation, configuration, management and troubleshooting VMWARE ESC, V Sphere or Virtual Center.
  • Experience applying network systems risk management framework principles for comprehensive network infrastructures.
  • Knowledge and skill supporting the collection, documentation, and submission of all data required for new or renewals of system Authority to Operate (ATO) with Risk Management Framework (RMF) processes.
  • Knowledge and experience providing technical expertise in the support of Assessment and Authorization (A&A) activities for all Data Center and Clout IT infrastructure elements to ensure accurate, complete, and timely performance of all activities associated with RMF and continuous monitoring.

REQUIRED CITIZENSHIP AND CLEARANCE:
  • Must be a U.S. citizen
  • Must have an active Top Secret clearance




The Alaka`ina Foundation Family of Companies (FOCs) is a fast-growing government service provider. Employees enjoy competitive salaries. Eligible employees enjoy a 401K plan with company match; medical, dental, disability, and life insurance coverage; tuition reimbursement; paid time off; and 11 paid holidays.

We are an Equal Opportunity/Affirmative Action Employer of individuals with disabilities and veterans. We are proud to state that we do not illegally discriminate in employment decisions on the basis of any protected categories. If you are a person with a disability and you need an accommodation during the application process, please click here to request accommodation. We E-Verify all employees

"EOE, including Disability/Vets" OR "Equal Opportunity Employer, including Disability/Veterans"

The Alaka`ina Foundation Family of Companies (FOCs) is comprised of industry-recognized government service firms designated as Native Hawaiian Organization (NHO)-owned and 8(a) certified businesses. The Family of Companies (FOCs) includes Ke`aki Technologies, Laulima Government Solutions, Kūpono Government Services, and Kapili Services, Po`okela Solutions, Kīkaha Solutions, LLC, and Pololei Solutions, LLC. Alaka`ina Foundation activities principally benefit the youth of Hawaii through charitable efforts which includes providing innovative educational programs that combine leadership, science & technology, and environmental stewardship.

For additional information, please visit www.alakainafoundation.com

#LI-JS1

#ClearanceJobs
group id: 10369495
R
Recruiter
Find Keaki Technologies on Social Media
Other
Network Employers (7)
Talent Acquisition Specialist
Talent Acquisitions Specialist - Pacific Ops
Recruiter
Recruiter
ADMIN
About Us
The Alaka`ina Foundation Family of Companies (FOCs) is comprised of industry-recognized government service firms who are designated as Native Hawaiian Organization (NHO)-Owned and fall into the respective categories of Small Business (SB), 8(a) certified Small Disadvantaged Business (SDB), and HUBZone. Certified in 2004 as a Native Hawaiian Organization (NHO), the Alaka`ina Foundation Family of Companies (FOCs) consists of Ke`aki Technologies, Laulima Government Solutions, Kūpono Government Services, and Kāpili Services. Our mix of capabilities, NHO procurement advantage, and contract vehicles present a strong tool set to the Federal acquisition community. These features create a total solutions package that is compelling and can support a variety of acquisition strategies.
See Keaki Technologies profile

Keaki Technologies Jobs

Clearance Level
Top Secret