Vision Information Technology Consultants  LLC
  • San Antonio, TX, USA
  • Full Time

Vision IT is a fast growing, woman-owned business that's supported DoD and Federal Sector IT initiatives for two decades. We work side-by-side with our clients as a trusted, long-term partner offering innovative consultation and leadership to solve their most pressing and complex problems. We orchestrate people, strategies, technologies and best-of-breed business processes.

Vision IT seeks the services of a Senior Information Assurance Security Admin for our San Antonio, TX client.

Responsibilities May Include (but are not limited to) the following:

Senior Information Assurance Security Admin will be responsible for supporting the mission of the Information Systems Security Officer (ISSO) for all of our federal client's managed systems under the ISSO's responsibility. This position will ensure network resources are in compliance with DoD IA and security policies and vulnerability alerts, all IAVAs and any other technical advisories identified.

Additional Duties Include:

  • Administer, record, and support the upkeep of all network resources and any implemented changes as reported by the Continuous Monitoring and Risk Scoring (CMRS)/ACAS/Tanium/other scanning tools. Ensure all discovered discrepancies or security vulnerabilities, such as missing patches or perceived gaps in network security, are immediately resolved through the necessary DHA offices and service functions. Plan of Actions and Milestones (POA&Ms) shall be created, maintained, and followed through to resolution for issues requiring additional time for testing, solutions development, team collaboration, and deployment. POA&Ms will include detailed/applicable risk mitigation statements, and appropriate milestone dates.
  • Perform IA scans of network enterprise devices using tools such as, Security Content Automation Protocol (SCAP) Compliance Checker (SCC) Tool, manual checks, DISA STIG Viewer, ACAS Nessus Scanner, ACAS Security Center and Tanium. Perform routine and random testing of servers and devices to ensure 100% security compliance; validate deployed security patches and solutions to ensure proper installation and function. Maintain and validate asset lists within ACAS and eMASS. Maintain 95% of credentialed scans by resolving non-credentialing/dead/misconfigured assets.
  • Report any security violations and incidents up the chain of commandwithin established timeframes. Reply and report to security and associated taskers.
  • Ensure log files and audits are maintained and reviewed for all systems, and that authentication policies (i.e., password) are audited for compliance.
  • Review and evaluate the effects of security system changes, including interfaces, with other Information Systems (IS) and document all changes.
  • Ensure that all IS within area of responsibility(e.g. mJAD, AMEDD, North Beach Pavilion LAN) are certified and accredited via the Risk Management Framework (RMF) or comparable accreditation process; maintain and update in eMASS or other RMF system as required. Legacy accreditations may sunset, transition, or migrate to other existing or newly created accreditation boundaries.
  • Utilize Enterprise Mission Assurance Support Services (eMASS) and systems such as CMRS for the documentation of test evidence and risk assessment for each system.
  • Populate eMASS with test results and POAMs, hardware and software inventories, RMF policies and procedures, system diagrams, ports, protocols and services registration, system inheritances, and other artifacts to support accreditation decisions.
  • Update the Implementation and the Risk Assessment tabs in eMASS. Submit system packages for accreditation decisions.
  • Prepare and test Incident Response plans and procedures, Continuation of Operation Plans, and Information System Contingency Plans, and upload the plans and the After Action Reports into system artifacts.
  • Review and update system assets as part of the Continuous Monitoring process, and review and update system artifacts as part of the Annual Review process.
  • Perform risk assessments of all modifications or additions to the system and upload test results, supporting documents, POAMs, diagrams, PPSM changes, Security Assessment Plan/Test Plan (SAP/TP) and Risk Assessment memos into the system artifacts. Update the hardware and software inventory and POAMs as needed when system configuration changes occur.
  • Serves as senior Information Assurance Specialist. Tracksand reports status of major projects and deliverables to include Risk Assessments, Risk Acceptance, accreditation and authorization efforts (A&A), Control Correlation Identifier (CCI) completion, Plan of Action and Milestones; recommends corrective actions and process improvements. Maintains responsibility for accuracy and timeliness of inputs to eMASS and other accreditation requirements.

Required Education, Experience, Clearance and Certification(s):

  • 4+ years experience
  • Bachelors in a related field (Experience will be accepted in lieu of education)
  • IAT Level III Certification or higher level (eg. CISSP)
  • MSTS or MCSE/A certification
  • DoD Secret Clearance

Vision IT provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Vision IT complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Vision IT expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Vision IT's employees to perform their job duties may result in discipline up to and including discharge.

Vision Information Technology Consultants LLC
  • Apply Now

    with our quick 3 minute Application!

  • * Fields Are Required

    What is your full name?

    How can we contact you?

  • Sign Up For Job Alerts!

  • Share This Page
SBA Hubzone Logo Home About Us Capabilities Contracts Careers Community Contact Us Why Vision It Current Job Openings Benefits