Government Careers

  • ACAS Administrator (TS/SCI clearance)

  • Koitecc Solutions
  • Newport News, Virginia 23608 United States View Map

ACAS Administrator (TS/SCI)The TS/SCI cleared ACAS Administrator supports the Client in designing and implementing the Assured Compliance Assessment Solution (ACAS) for the Client's networks on Langley Air Force Base, VA. The Administrator trains operators and information assurance personnel to maintain and operate ACAS tool functionality and leads teams in vulnerability management operations within DoD environments.Roles and ResponsibilitiesAssess current ACAS implementations for each network and recommend improvements to scanning coverage, architecture, and policy configuration.Document the design of the ACAS solution for each network.Lead and guide team members in troubleshooting and resolving operational issues within the ACAS environment.Develop reporting dashboard designs and reports tailored for leadership, cybersecurity staff, and system administrators.Generate, analyze, and present vulnerability assessment reports and risk mitigation updates to ISSMs/ISSOs.Ensure networks receive timely updates from DISA/DoD Patch Repository or Tenable and implement and track IAVA compliance.Implement reporting dashboard designs and generate environment‑specific compliance and vulnerability reports.Verify scheduled scans achieve required coverage of intended assets and complete successfully; remediate scan failures.Maintain Nessus scanner, Nessus Agents, Nessus Network Monitor, and PVS connectivity with the associated Security Center (SC) across Linux and Windows environments.Create and manage ACAS organizations, repositories, and scan zones; import, upload, and validate scan results.Coordinate with ISSMs, ISSOs, system owners, and administrators to drive vulnerability remediation efforts and track POA&M items.Ensure ACAS operations remain compliant with DoD security policies and DISA STIGs.Basic QualificationsBachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field (or equivalent experience).Active DoD Top Secret/SCI clearance.Active DoD 8570/8140 IAT Level III or IAM Level II certification (CISA, GSE, SCNA, CISSP (Associate), CAP, GSLC, or CISM).Foundational security certification such as CompTIA Security+.ACAS official training.3+ years of hands‑on ACAS and/or Nessus administration experience in a DoD or federal environment.5+ years supporting, configuring, and administering Red Hat Enterprise Linux (RHEL) in an enterprise environment.Experience with DoD Risk Management Framework (RMF) and eMASS, including developing RMF packages and maintaining Plan of Action & Milestones (POA&M).Experience managing vulnerability scanning across large enterprise networks with 1,000+ assets.Experience with virtualized environments (VMware or equivalent).ACAS Security Center (SC), Nessus Vulnerability Scanners (NVS), and Passive Vulnerability Scanner (PVS) administration.Red Hat Enterprise Linux (RHEL) installation, hardening, and maintenance.Application of DISA STIGs and SCAP compliance tooling.IAVA management, implementation, and remediation tracking.Experience with eMASS for artifact submission, control compliance, and system authorization packages.Working knowledge of NIST SP 800-37/800-53 and DoDI 8510.01 RMF processes.Familiarity with OPORD/FRAGO support and military operations security requirements.Preferred QualificationsScripting proficiency in NASL, Python, or Bash for scan automation and report customization.Experience with PVS deployment, tuning, and passive network traffic analysis.Familiarity with DISA/DoD Patch Repository processes and Tenable plugin feed update workflows.Experience presenting technical findings and risk summaries to executive and non‑technical audiences.Exposure to SIEM platforms (e.g., Splunk, Security Onion) and integration with ACAS scan data.Experience with Microsoft Visio for network architecture and ACAS component diagramming.Knowledge of SE Linux, AppArmor, or other access control frameworks.Familiarity with cloud environments (AWS GovCloud or Azure Government) and scanning in hybrid infrastructure.Pay Range$87,100.00 – $157,450.00Commitment to Non‑DiscriminationAll qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.#J-18808-Ljbffr

ACAS Administrator (TS/SCI)The TS/SCI cleared ACAS Administrator supports the Client in designing and implementing the Assured Compliance Assessment Solution (ACAS) for the Client's networks on Langley Air Force Base, VA. The Administrator trains operators and information assurance personnel to maintain and operate ACAS tool functionality and leads teams in vulnerability management operations within DoD environments.Roles and ResponsibilitiesAssess current ACAS implementations for each network and recommend improvements to scanning coverage, architecture, and policy configuration.Document the design of the ACAS solution for each network.Lead and guide team members in troubleshooting and resolving operational issues within the ACAS environment.Develop reporting dashboard designs and reports tailored for leadership, cybersecurity staff, and system administrators.Generate, analyze, and present vulnerability assessment reports and risk mitigation updates to ISSMs/ISSOs.Ensure networks receive timely updates from DISA/DoD Patch Repository or Tenable and implement and track IAVA compliance.Implement reporting dashboard designs and generate environment‑specific compliance and vulnerability reports.Verify scheduled scans achieve required coverage of intended assets and complete successfully; remediate scan failures.Maintain Nessus scanner, Nessus Agents, Nessus Network Monitor, and PVS connectivity with the associated Security Center (SC) across Linux and Windows environments.Create and manage ACAS organizations, repositories, and scan zones; import, upload, and validate scan results.Coordinate with ISSMs, ISSOs, system owners, and administrators to drive vulnerability remediation efforts and track POA&M items.Ensure ACAS operations remain compliant with DoD security policies and DISA STIGs.Basic QualificationsBachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field (or equivalent experience).Active DoD Top Secret/SCI clearance.Active DoD 8570/8140 IAT Level III or IAM Level II certification (CISA, GSE, SCNA, CISSP (Associate), CAP, GSLC, or CISM).Foundational security certification such as CompTIA Security+.ACAS official training.3+ years of hands‑on ACAS and/or Nessus administration experience in a DoD or federal environment.5+ years supporting, configuring, and administering Red Hat Enterprise Linux (RHEL) in an enterprise environment.Experience with DoD Risk Management Framework (RMF) and eMASS, including developing RMF packages and maintaining Plan of Action & Milestones (POA&M).Experience managing vulnerability scanning across large enterprise networks with 1,000+ assets.Experience with virtualized environments (VMware or equivalent).ACAS Security Center (SC), Nessus Vulnerability Scanners (NVS), and Passive Vulnerability Scanner (PVS) administration.Red Hat Enterprise Linux (RHEL) installation, hardening, and maintenance.Application of DISA STIGs and SCAP compliance tooling.IAVA management, implementation, and remediation tracking.Experience with eMASS for artifact submission, control compliance, and system authorization packages.Working knowledge of NIST SP 800-37/800-53 and DoDI 8510.01 RMF processes.Familiarity with OPORD/FRAGO support and military operations security requirements.Preferred QualificationsScripting proficiency in NASL, Python, or Bash for scan automation and report customization.Experience with PVS deployment, tuning, and passive network traffic analysis.Familiarity with DISA/DoD Patch Repository processes and Tenable plugin feed update workflows.Experience presenting technical findings and risk summaries to executive and non‑technical audiences.Exposure to SIEM platforms (e.g., Splunk, Security Onion) and integration with ACAS scan data.Experience with Microsoft Visio for network architecture and ACAS component diagramming.Knowledge of SE Linux, AppArmor, or other access control frameworks.Familiarity with cloud environments (AWS GovCloud or Azure Government) and scanning in hybrid infrastructure.Pay Range$87,100.00 – $157,450.00Commitment to Non‑DiscriminationAll qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.#J-18808-Ljbffr

Government Careers

Government Careers

Government jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.

Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.

Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.

Show more
Apply Now

MORE JOBS

Show More