Information Technology Auditor

JOB TYPE: FULL-TIME

COMPETITIVE SALARY, COMPREHENSIVE BENEFITS AND A COMPANY THAT CARES!

Relocation May Be Considered

AUSGAR Technologies, Inc., an EOE Minorities/Females/Disabled/Veterans employer, is an established Service-Disabled Veteran-Owned Small Business (SDVOSB) Department of Defense, government contractor with core competencies in Information Assurance, Cyber Security and Systems Engineering. With offices on both the East and West coasts, an inviting culture and above-standard benefits, opportunity abounds for the right individual!

Information Technology Auditor - 25-005 - San Diego, California

AUSGAR Technologies has an exciting hybrid/remote opportunity for an Information Technology Auditor to join our team of smart and innovative technical team members working in San Diego, California.

• Provide cybersecurity compliance auditing support of unclassified and classified networks and systems to support preparations for CCRIs, CSIs, CCORIs, DoD or DoN Inspector General inspections, internal cyber inspections and any other cyber-related inspections conducted internally or by authorized external entities, external government agencies or contractors.
• Assess and document the cybersecurity posture for applicable training networks and systems.
• Audit more complex information systems, platforms and operating procedures in accordance with established standards for efficiency, accuracy and security.
• Evaluate IT infrastructure in terms of risk to the Enterprise and establishes controls to mitigate loss.
• Determine and recommend improvements in current risk management controls and implementation of system changes or upgrades.
• Verify existing systems and networks cybersecurity compliance status.
• Monitor the quality of the vulnerability management of an ever-changing enterprise network.
• ACAS implementation and operations.
• Experience analyzing scan results to identify vulnerabilities for recommended immediate remediation.
• IAVM, TASKORD, EXORD and FRAGORD vulnerability Management.
• Verify integrity of discovery scans as required to detect rogue devices.
• Liaison to ensure engineered security solutions are IAW DoD policy.
• Develop and present analysis of vulnerability findings.
• Attend and lead working groups to determine compliance requirements.
• Interpret CS tasking from various sources and determine the best way to implement the guidance in a large enterprise.
• Participate in Command Cybersecurity Readiness Inspections (CCRI) and Cyber Security Inspections (CSI)
• Verify systems and devices configurations and compliance are in accordance with DISA Security Technical Implementation Guides (STIGS), Security Content Automation Protocol (SCAP) and other industry standard assessment methods.
• Assess Risk Management Framework (RMF) NIST 800-53 R4 Information Assurance Controls.
• Assess and assist with implementation of countermeasures or mitigating controls.
• Ensure the integrity and protection of networks, systems and applications by assessing compliance with Enterprise security policies, through monitoring and analysis of manual and automated data.
• Perform periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance.
• Support the development of compliance assessment briefs.
• Provide guidance and work leadership to less-experienced technical staff members.
• Interpret results from network/server/application scanning tools such as Tenable Nessus.
• Interpret emerging security, governance and continuous monitoring policies.
• Articulate cybersecurity risk and provide recommendations for remediation/risk acceptance.
• Develop and/or support the successful development of cybersecurity processes and procedures.

The physical demands and work environment described here are representative of those that must be met by an employee to successfully perform the essential functions of the job. Reasonable accommodation may be made for individuals with disabilities to perform the essential functions.

• Active Secret Clearance, with the ability to obtain a TS/SCI.
• IAT/IAM Level III, i.e., Security CE or higher
• Bachelor's degree in computer science or a related technical discipline from an accredited college/university and 4 years of applicable work experience.
• Strong RMF, ACAS and STIG experience.
• Experience with cybersecurity compliance auditing support preparations, i.e. CCRIs, CSIs, CCORIs, DoD or DoN inspections.
• Experience analyzing scan results to identify vulnerabilities.
• Ability to travel up to 10-15%.

Salary Range: $80K-$110K

An essential qualification for this position is successfully obtaining a Secret security clearance issued by the Federal Government, which may require successful completion of a background check.

AUSGAR's salary range is dependent upon a variety of factors, which include experience, skills, education, certifications and geographical location. Our salary range includes a base salary and excellent benefits package as part of our total compensation.

AUSGAR Technologies, Inc. is an equal employment opportunity and affirmative action employer and is committed to engaging in affirmative action to increase employment opportunities for females, minorities, protected veterans and individuals with disabilities.

If you are a qualified individual with a disability or a disabled veteran and need assistance in completing the application, you have the right to request reasonable accommodation. Please e-mail us at jobs@ausgar.com if you are unable or limited in your ability to use or access www.ausgar.com careers page as a result of your disability.