Senior Cybersecurity Engineer

Position Summary

Odyssey Systems has an exciting opportunity for a Senior Cybersecurity Engineer to support the C3C / Kessel Run (KR) Division, which is within the USAF C3BM Directorate.  This role will focus on cybersecurity specifically for the Air Operations Center (AOC) 10.1.

This is a full-time position located at Hanscom AFB, Bedford, MA.

Responsibilities

Duties include, but not limited to: 

Identify and evaluate opportunities to apply innovative and emerging technologies, automate processes, continually improve the conduct and efficiency of audit activities and enterprise audit compliance of systems and infrastructure, and identify metrics for monitoring improvements. Develop/update and maintain system-specific audit review dashboards and reporting mechanisms to show compliance across enterprise. Review data and prepare ACAS reports for SPO Leadership to include pre/post VVA reports, GCCS-J STRATCOM reports, etc. Generate Third Party Applications/Systems vulnerability reports and provide to team for resolution with COTs/GOTs owners.

Assist with creation of ACAS TTPs, SOPs, and capture of lessons learned to improve performance, efficiency, and effectiveness of Cybersecurity personnel using the ACAS for the AOC WS Enterprise.

Daily center reporting – verifying security compliance with IAVA’s and DISA STIGS. Daily central server maintenance - check logs, syncs, job queues, CSU dashboards, validate scans are credentialed and ACAS scanners and Security Center are operational and reporting properly for AOC sites.

Gathering, and reporting of AOC WS Software and Hardware information for EDS/CM team on a monthly or when requested.

Ensure AOC WS 10.1 baseline aligns with OPORDS and Cyber Tasking Orders. Review ARE/FT ACAS documentation and redline as necessary. Support the research and analysis of DoD and AF policies and tasking orders to mitigate implementation problems that may impact the AOC WS 10.1 ACAS implementation.

• Provide subject matter expertise (SME) on ACAS (Assured Compliance Assessment Solution) systems and related processes.
• Promoting awareness of security issues among management and ensuring sound security principles are reflected in organizations’ visions and goals.
• Assist in the design, implementation, configuration, and maintenance of ACAS tools and applications for the KR enterprise.
• Standardize ACAS reporting and provide oversight to internal and external leadership, 20+ sites (CONUS and OCONUS), and ACAS cyber team members.
• Review and approve reports and metrics related to ACAS scans and vulnerability management efforts before released to KR leadership.
• Analyze security vulnerabilities identified by ACAS scans and provide oversite and recommendations for remediation.
• Collaborate with ACAS teams to ensure proper integration and utilization of ACAS tools within KR.
• Stay updated on industry best practices and emerging trends related to ACAS and cybersecurity.
• Support training efforts for staff members on the use of ACAS tools and interpretation of scan results for KR.
• Develop scripting to work with the ACAS applications to reduce manual assessment of compliance reporting.
• Update and maintain the KR ACAS (Nessus scanners and Security Centers) system at Hanscom AFB, including planning, delivery, installation, security hardening, configuration, integration, and testing.
• Administering Red Hat Enterprise Linux, including:
• Building, patching, and configuring RHEL systems (RHEL 7/8) to meet STIG requirements.
• Configuring DNS, NTP, and network settings to support ACAS installation.
• Performing backups and restores of system OS and installed software.
• Provide SME level support to define, analyze, implement, secure, test, and deploy new requirements and enhancements for network monitoring, vulnerability identification, remediation, and security compliance IAW current OPORDS.
• Assist with automation and implementation of periodic vulnerability reporting from ACAS to internal and external KR organizations.
• Review of discovery scan results to identify systems not being vulnerability scanned and automated reporting.
• Review of vulnerability scan results to identify, troubleshoot, and resolve credential and other common scan issues, and automated reporting.
• Review and compilation of scan results to support asset inventory requirements and automation.
• Assessment of scan results to identify areas where vulnerability remediation has the greatest impact on risk and automated reporting.
• Configuration of ACAS components to align with DISA Best Practice Guidance.
• Troubleshooting and resolution of communication issues between ACAS software components, failed plugin updates, and other common software issues with the Hansom ACAS Servers.

Qualifications

Citizenship: Must be a US citizen

Minimum Required Qualifications

Clearance: Must have and be able to maintain a Top Secret Level Clearance

Preferred Qualifications

Education: Bachelor's Degree in a related field

Years of experience: 10+ years of experience

Additional Information

Location: Hanscom AFB, Bedford, MA

Travel: Travel may be required at the customer's discretion

Must be onsite at Hanscom AFB 3-4 days per mission requirements

#LI-MK1

Company Overview

Odyssey Systems Consulting Group, is an innovative small business committed to providing world-class technical, management, and training support services to government and public sector clients. We focus on people, processes, and performance to deliver superior results. Since our inception in 1997, our commitment to mission success and customer satisfaction has been recognized with exponential growth and exceptional past performance ratings. We accept challenging assignments and drive projects from the planning stages, through implementation, and into operations and support.

Please note: Final compensation for this position will be determined by various factors such as the Federal Government contract labor categories and contract wage rates, relevant work experience, specific skills and competencies, geographic location, education, and certifications.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities