We are looking for a motivated and detail-oriented System Administrator - ACAS System Security Compliance Administrator to support operations for a key federal project. This role plays a critical part in maintaining system security and compliance while ensuring the smooth operation of vulnerability management solutions. If you have a passion for cybersecurity and system administration, along with experience working with Tenable products, we encourage you to apply.
Responsibilities:
Manage and maintain security and compliance configurations, asset inventories, and best practices for a Vulnerability Management Solution (VMS) across multiple classified and unclassified network locations.
Operate and support Tenable products within the Assured Compliance Assessment Solution (ACAS), including SecurityCenter (SC) and Nessus scanners, as well as Nessus Network Monitor (NNM), Nessus Manager, and Nessus Agents.
Collaborate with cybersecurity personnel, system operators, and integrators to maintain ACAS compliance and security.
Assist in implementing tailored security compliance reports, collections, and asset management solutions.
Deploy, configure, monitor, tune, upgrade, and troubleshoot Tenable components across local, remote, and complex environments.
Ensure compliance with security standards and reduce cyber security risk exposure.
Conduct security assessments and maintain scanning schedules, scanner zones, and vulnerability repositories.
Support external reporting requirements, including DISA Continuous Monitoring and Risk Scoring (CMRS) and DoD Patch Repository Defense Asset Distribution System (DADS).
Assist in managing scan zones, scanners, and subnets while integrating asset management tools like Forescout, SolarWinds Orion, McAfee Endpoint Security Solutions (ESS), and Microsoft Endpoint Configuration Manager (MECM).
Lead and oversee a team of 5-7 system administrators.
Design and implement reporting dashboards and automated notifications for various stakeholders.
Maintain compliance with established change management processes and apply best practices in system administration and cybersecurity.
Manage rack and provision government-furnished equipment (GFE) servers, as needed.
Document and maintain records of ACAS system configurations, including IP addresses, domain names, access controls, and certifications.
Deploy and manage Nessus Agents for servers across multiple environments.
Ensure timely implementation of cybersecurity patches, updates, and upgrades according to AFCYBER directives, TCNOs, and other compliance requirements.
Troubleshoot and optimize scan performance to ensure comprehensive vulnerability assessment coverage.
Provide cybersecurity scanning capability and system administration continuity.
Assist in maintaining compliance with DISA ACAS best practice guidance.
Support cybersecurity initiatives, including Information Assurance Vulnerability Management (IAVM) programs, OPORD/FRAGO support, and DISA security audits.
Contribute to the integration of cybersecurity data into enterprise-wide security platforms, such as Splunk and ELICSAR Big Data Platform (BDP).
Participate in all phases of the Vulnerability Management (VM) lifecycle, from scanning and patching to reporting and analysis.
Qualifications:
1 to 4 years of hands-on experience with ACAS, Tenable.sc (SecurityCenter), or Tenable Nessus products.
Familiarity with ACAS or Tenable SC/Nessus best practices.
Experience with Linux-based (RHEL) or Windows OS in mid-to-large enterprise environments.
Background in network patch/update management.
Experience with virtualized environments (VMware vSphere, ESXi).
Proficiency in setting up, executing, and analyzing Tenable Nessus scans.
Knowledge of Department of Defense (DoD) Security Technical Implementation Guidelines (STIGs) and Security Requirements Guide (SRG).
Strong diagnostic, analytical, and troubleshooting skills.
Passion for continuous learning in cybersecurity and IT infrastructure.
Ability to prioritize tasks effectively to align with business objectives and security policies.
Preferred scripting experience in Bash, Perl, PowerShell, Python, or Nessus Attack Scripting Language (NASL).
Knowledge of disaster recovery, risk reduction strategies, and site redundancy.
Strong communication and interpersonal skills, with the ability to follow security policies and procedures.
Familiarity with networking concepts (VLAN, trunking, IP routing, switching, OSI model, and firewalls).
Additional Information:
This is a great opportunity to work in a fast-paced, security-focused environment with room for professional growth.
Candidates must be eligible for security clearance.
Remote work may be available, but on-site presence in Montgomery, AL may be required based on project needs.
If you are a detail-oriented professional with a strong cybersecurity background and a passion for maintaining system security and compliance, we would love to hear from you!
Employment Type: Full-Time
Salary: $ 75,000.00 Per Year