Insight Global is looking for a Top Secret Cyber Engineer to be located in the Colorado Springs areas. This individual will process and track DD Form 2875 user account forms and required training for privileged and non-privileged accounts, perform annual accounts validation, and work with the system administrator to create, modify, and remove accounts. Assess systems and networks within a virtual environment and identify where those systems deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations, such as compliance audits using STIG Viewer, SCAP, etc., and active evaluations, such as vulnerability assessments utilizing ACAS. Perform Security Technical Implementation Guide (STIG) assessments and hardening for both Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS. Develop test plans reflecting how STIG checks are implemented and be able to show the expected outcomes of those checks. Update the Risk Management Framework (RMF) artifact documentation to ensure that non-compliant system hardening is tracked and remediated. Establish strict program control processes to ensure risk mitigation and support obtaining system assessment and authorization. Includes support of process, analysis, coordination, control certification test, compliance documentation, investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits. Assist in implementing the required government policy (i.e., NISPOM, NIST, DoD), making recommendations on process tailoring, and participating in and documenting process activities. Perform analyses to validate established cybersecurity controls and requirements and to recommend cybersecurity safeguards. Support program test milestones through pre-test preparations, participating in the tests, analyzing the results, and preparing required artifacts supporting authorization. Prepare artifacts such as Test Results (TR), Authorization Boundary Diagrams (ABD), Network Topologies, Flow-diagrams, Hardware and Software listings, Ports, Protocols, and Services Management documentation, supporting Assessment and Authorization activities and maintain the Plan of Actions and Milestones (POA&M). Periodically review each program support and operational system's audits and monitor corrective actions until all actions are closed. Coordinate across the program to address identified deficiencies during RMF assessment activities.
PR: 60-78/hr DOE
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
Bachelors degree w/ 5+ years of applicable experience (4 more years in lieu of degree acceptable)
Top Secret clearance
IAT Level II/ IAM Level I DoD 8570 certification (Sec+ CE or equivalent)
Understanding and utilization of (eMASS).
Well versed within RMF stages
Knowledge of Software Assurance (SwA) static and dynamic code analysis (Fortify/SonarQube)
Strong experience with ACAS, SCAP and STIGS.
Strong system administration experience within Windows and RHEL
Previous background working in a virtual environment
Previous background working with dockers and containers
Administer ACAS and ESS (formally HBSS). Previous experience with ConfigOS
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.