Apply on Employer Site

ASRC Federal · 1 day ago

Assured Compliance Assessment Solution (ACAS) Engineer

Quantico, VA

Full-time

Hybrid

Senior Level

5+ years exp

ASRC Federal is a leading government contractor furthering missions in space, public health, and defense. They are actively hiring an Assured Compliance Assessment Solution (ACAS) Engineer responsible for the implementation, maintenance, and operational support of the ACAS suite of tools, focusing on vulnerability scanning and compliance assessments.

ConsultingGovernmentInformation TechnologyLogisticsProfessional ServicesSpace TravelStaffing Agency

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Install, configure, and maintain ACAS components, including Nessus scanners, SecurityCenter/Tenable.sc, and Nessus Network Monitor (NNM)/Tenable.asm

Deploy and manage distributed scanning infrastructure across diverse network environments

Customize ACAS settings, policies, and scan templates to meet specific organizational requirements

Schedule and execute vulnerability scans using Nessus scanners

Analyze scan results to identify vulnerabilities, misconfigurations, and security gaps

Prioritize vulnerabilities based on severity, exploitability, and potential impact

Validate scan findings to minimize false positives

Configure ACAS to perform compliance assessments against industry standards and internal security policies

Generate comprehensive reports on vulnerability status, compliance posture, and remediation progress

Provide analysis and interpretation of assessment results to stakeholders

Develop custom reports and dashboards to visualize security metrics and trends

Collaborate with system administrators and IT staff to facilitate vulnerability remediation efforts

Provide guidance and technical assistance on vulnerability mitigation strategies

Track remediation progress and ensure timely resolution of identified issues

Re-scan systems to verify remediation effectiveness

Perform system administration tasks for ACAS servers and databases

Monitor system performance and troubleshoot any issues

Apply security patches and software updates to ACAS components

Maintain accurate documentation of ACAS configuration and procedures

Integrate ACAS with threat intelligence feeds to enhance vulnerability detection capabilities

Correlate scan results with threat intelligence data to identify potential exploitation attempts

Customize ACAS policies to prioritize vulnerabilities based on threat landscape

Develop and maintain training materials for ACAS users

Provide training and support to IT staff on vulnerability management processes

Document ACAS procedures, policies, and best practices

Stay up-to-date on the latest vulnerability trends and security threats

Research and evaluate new ACAS features and capabilities

Identify opportunities to improve ACAS effectiveness and efficiency

Contribute to the development of security policies and procedures

Qualification

Tenable ACAS suiteVulnerability managementCybersecurity operations8570 certificationNIST complianceCommunication skillsTeam collaborationTechnical documentation

Required

Minimum of 5 – 7 years of experience in vulnerability management, security scanning, or cybersecurity operations

Hands-on experience with the Tenable ACAS suite (Nessus, SecurityCenter/Tenable.sc, NNM/Tenable.asm) is required

Active Secret Clearance REQUIRED, eligible to be upgraded to TS/SCI

Bachelor's Degree in Computer Science, Information Technology, Cybersecurity, or a related field

Must meet 8570 certification requirements at the time of hire. IAM or IAT Level I (e.g., A+, CCNA Security, Network+ CE, SSCP, CAP, GSLC, Security+ or higher tiered 8570 certification