Cyber Tools Assessor - Active TS/SCI with CI Poly

We’re looking for a Cyber Tools Assessor who can create solutions for the Government that will withstand even the most advanced cyber threats. As a Cyber Tools Assessor, you’ll detect, evaluate, and document the security configuration of developmental and operational tools, security impacts, and make improvement recommendations. You’ll coordinate work with in-house teams, subcontractors, and vendors to identify the right mix of tools and techniques to translate your customer’s IT needs and future goals into a plan that will enable secure and effective solutions. We need to come up with the best solutions, so you’ll investigate new techniques, break free from the legacy model, and go where the industry is going. You’ll lead the team through a critical approach to network design, providing alternatives and customizing solutions, to maintain a balance of security and mission needs.

As an information security risk specialist on our team, you’ll consult the client leading the discovery of their cyber risks, understanding applicable policies, and developing a mitigation plan. You’ll oversee the analysis of technical, environmental, and personnel details from technical subject matter experts and engineers as your team reviews the entire threat landscape. Then, you’ll guide your client through a plan of action with presentations, white papers, and milestones. Your client will rely on you to translate security concepts, so they can make the best decisions to secure their mission critical systems. This is your opportunity to take a leadership role in information security while sharing your skills in cloud technologies with both clients and your team. Join us as we protect our nation's information systems.

• 3 years of experience as an Information System Security Analyst or Information System Security Officer
• Experience conducting tools assessments and configuration analysis against best practices, vendor specifications, and government security guidelines and requirements
• Experience with the implementation, oversight, and maintenance of the security configuration, practices, and procedures for systems
• Experience with implementing controls from NIST 800-53, FedRAMP, ICD 503, RMF, and DoD Information Levels, including applying them to the design and implementation of information technology solutions to achieve an authorization to operate
• Experience with eMASS or Xacta IA Manager
• Ability to perform risk analysis
• Active TS/SCI clearance; willingness to take a polygraph exam
• HS diploma or GED and 7 years of experience with supporting IT projects and activities, Associate’s degree and 5 years of experience with supporting IT projects and activities, or Bachelor’s degree and 3 years of experience with supporting IT projects and activities
• DoD 8570 IAT Level II Certification, including CCNA-Security, CySA , GICSP, GSEC, Security CE, CND, or SSCP
• DoD 8570.01-M CSSP - Infrastructure Support Certification, including CEH, CySA , GICSP, SSCP, CHFI, CFR, Cloud , or CND Certification

Nice If You Have:

• Experience with cloud native technologies
• Experience assessing configuration changes, such as new COTS tools or web application upgrades, to system security boundary
• Experience drafting tool implementation CONOPS and reviewing tool or capabilities topologies, CONOPS, and vulnerability scans to assess risk
• Experience with vulnerability scanning tools, such as ACAS or Nessus, container-based variants, such as Anchore, and code-based variants such as SonarQube
• Knowledge of cloud native security tools, including HBSS
• Knowledge of Zero Trust principles and concepts
• Ability to work within a collaborative team and a fast-paced dynamic environment
• Ability to plan and conduct security authorization reviews and assurance case development for initial installation of systems and networks
• AWS, Azure, or GCP Certification

Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients.

Why ENS?

• Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS
• 401k Contribution from Day 1
• PTO 11 Paid Federal Holidays
• Long & Short Term Disability Insurance
• Group Term Life Insurance
• Tuition, Certification & Professional Development Assistance
• Workers’ Compensation
• Relocation Assistance