Information security analyst jobs in Virginia Beach, VA

Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the #1 choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity We are seeking a dedicated Bank Information Security Governance Senior. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in our Phoenix, AZ; San Antonio, TX; Plano, TX; Colorado Springs, CO; Chesapeake, VA; Charlotte, NC or Tampa, FL offices. Relocation assistance is not available for this position. What you'll do: Supports the first line of defense in ensuring the effectiveness of Information Security (IS) governance, IS risk management, and compliance programs within the Bank Technology Office. Collaborates with Information Technology (IT) and IS teams, business stakeholders, Compliance, Risk Management, Audit Services, and external parties to support IS governance and IS risk and compliance-based initiatives. Acts as a key liaison between the Association's IS function and various Bank business units, ensuring alignment with enterprise security policies and standards. Continuously monitors IS environments to identify emerging risks related to cybersecurity, infrastructure, applications, and third-party services. Provides consultative services across Bank. Provides expert insights on the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the Bank organization's specific needs and strategic objectives. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Conducts forward-looking risk assessments for new technology initiatives, system changes, and digital transformation projects. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Partners with and leads IT/IS teams to embed IS risk considerations early in the project lifecycle and ensure timely mitigation strategies. Leads the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the organization's specific needs and strategic objectives. Defines, maintains, and enforces IS policies, standards, and procedures to ensure compliance with relevant laws, regulations, and industry best practices. Ensures IS risk compliance with legal, regulatory, and contractual requirements, coordinating audits and assessments. Provides governance oversight for IS related initiatives, ensuring they adhere to established standards, policies, and risk management practices. Mentors junior members of the IS governance team, providing guidance and support in their professional development. Enhances, and maintains awareness of the risk governance framework and its elements (RCSA). Performs root cause analysis to determine likelihood, impact, and mitigation approaches of identified risks. Prepares metrics reporting and participates in the metrics refresh process. Maintains awareness of cloud computing principles and AI and understands potential IS risks inherent within this discipline. Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled in accordance with risk and compliance policies and procedures. What you have: Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree. 6 years experience supporting IS governance, IS risk management, compliance, or IT audit activities In-depth knowledge and application of IT governance frameworks such as COBIT, ITIL, ISO 27001, and NIST, CIS Controls and CMMC Experience working on and implementing IT and/or IS policies, standards, and procedures. Experience leading and coordinating IS audits and assessments and ensuring compliance with regulatory requirements. A strong understanding of regulatory and compliance requirements applicable to the organization. Ability to interpret complex IT/IS environments and detect early warning signals. Experience in identifying potential failure points and simulating risk scenarios. Proficiency in using data to identify trends, anomalies, and emerging risks. Understanding of cloud, cybersecurity, and digital transformation risks. Ability to articulate risk insights and influence stakeholders to take preventive actions. Familiarity with GRC platforms, vulnerability management tools, and risk dashboards. What sets you apart: Information Technology or Security certifications (e.g., CISA, CRISC, CISM, CISSP, CGEIT, CIA, NIST, COBIT, etc.). Familiarity with financial institutions regulations (GLBA, FFIEC Handbooks, PCI DSS) Work experience in highly regulated work environments including other large financial institutions Experience with data-driven analysis using AI tools and collaborating to drive process innovation Highly self-motivated individual capable of working independently and proactively handling their workload with minimal direct supervision. Strong analytical skills and demonstrated experience collaborating effectively with leadership at all levels within an organization. Compensation range: The salary range for this position is: $114,080-$218,030. USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on USAAjobs.com. Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Who We Are: Headquartered in Washington, DC, Versar Global Solutions provides full mission lifecycle solutions for challenges faced by our government and commercial Customers in the natural, built, and digital environments. With nearly 2,000 team members around the world, and a rich legacy spanning more than 70 years, Versar Global Solutions delivers a broad array of planning, analysis and risk management solutions, project and program management, operations and maintenance services, and information technology applications for environmental management and remediation projects, mission critical facilities and installations, and in support of readiness and contingency operations. Who You Are: Are you a talented and innovative cyber security specialist that wants to make a difference in the world? Join us as a Cyber Security Threat Analyst and lead the charge in developing, implementing, and supporting cutting-edge geospatial technologies. In this pivotal role, you will collaborate with our dynamic Geospatial & Digital Solutions (GDS) Market Sector team to support diverse IR&D and customer-focused projects within a multi-disciplinary organization to achieve specific goals and objectives. The ideal candidate will focus on leveraging AI solutions and digital tools to improve efficiency, scalability, and the overall digital experience for both internal teams and external customers. Reporting directly to our Director of our Digital HUB Team, we want to leverage your expertise in securing customer-facing products. The ideal candidate will focus on threat modeling, security assessments, protocol validation, and ensuring compliance with government certifications and policies for government and private systems and protocols. What You'll Do: Perform comprehensive threat modeling and risk assessments for customer products and internal systems. Assess API security, OAuth/SAML, tenant isolation, or cloud-native security Validate security protocols to ensure compliance with industry standards and best practices. Conduct walkthroughs and audits of security policies and procedures. Collaborate with cross-functional teams to implement mitigation strategies addressing identified risks. Support and lead efforts for government and industry security certifications. Monitor emerging cyber threats and vulnerabilities, analyzing their potential impact on organizational assets. Develop detailed reports documenting findings, risk assessments, and remediation plans. Assist in designing and maintaining incident response plans and security controls. What You'll Bring: Certifications such as CISSP, CISM, CEH, or equivalent. Minimum 3 years of experience in threat modeling, vulnerability assessments, and protocol validation for large systems. Strong knowledge of cybersecurity frameworks and government certification requirements. Experience with API security, OAuth/SAML, tenant isolation, and cloud-native security concepts. Experience reviewing and improving security policies, procedures, and compliance documentation for geospatial systems. Familiarity with security protocols, network security, and cryptographic principles. Excellent analytical and problem-solving skills. Ability to communicate complex security concepts clearly to technical and non-technical stakeholders. Familiarity working within government or regulated environments. Experience supporting audits and managing compliance documentation. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Must be proficient in English, both written and verbal, to ensure effective communication and collaboration. Must be able to obtain and maintain a Secret Security Clearance. Successful results of preemployment screenings, including federal background check, MVR, and drug screen. Comply with company drug and alcohol policy. Be authorized to work in the US or will be authorized by the successful candidate's start date. Preferred Skills & Certifications: Strong Project Management Skills: Ability to plan, organize, and manage multiple projects simultaneously, ensuring they are completed on time and within budget. Digital and Technology Expertise: Understanding of various digital technologies, platforms, and tools relevant to the program's objectives. Communication and Interpersonal Skills: Ability to communicate effectively with diverse stakeholders, build relationships, and influence decision-making. Problem-Solving and Analytical Skills: Ability to identify and solve complex problems, analyze data, and make data-driven decisions. Leadership and Team Management Skills: Ability to lead and motivate teams, build consensus, and drive collaboration. Customer Knowledge: Familiarity with Federal Market and technical approaches related to next-generation cloud, network, and cybersecurity technologies. Location Requirements The position will primarily work onsite at the Newport News, VA office location. EEO Commitment Versar Global Solutions is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. Versar Global Solutions complies with applicable state and local laws governing non-discrimination in employment in every location in which the company operates. This policy applies to all terms and conditions of employment, including hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Versar Global Solutions expressly prohibits any form of unlawful employee harassment based on race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran. Improper interference with the ability of Versar Global Solutions employees to perform their job duties is not tolerated. #LI-WJ1

Spectrum is seeking highly qualified Information Assurance Analyst to support our proposal for a new program located in Norfolk, VA. General Experience: Candidates must have a minimum of three (3) years of job-related experience acquired in the field of information assurance and cybersecurity. In addition to job experience, candidates will be required to undergo annual training and continuing education to keep up with the latest developments and best practices in the industry. Furthermore, candidates must meet and maintain the minimum credential requirements as outlined in the Department of Defense (DoD) 8570.01-M, Information Assurance Workforce Improvement Program, and the DoD 8140.01. Requirements Requirements: Responsibilities: Process access requests for enterprise, non-enterprise, and command-specific applications, and maintain the command database of these records. Handle requests for new access tokens, revokes, and re-issues. Process requests for database updates to the command application management system. Manage the cybersecurity budget, including maintaining financial records, developing purchase requests, reviewing compliance of requests, and tracking requests using command-provided applications. Create cybersecurity digital media for the command SharePoint site, plan of the week, and email campaigns to support cybersecurity awareness. Develop, review, and provide guidance on DoN and command cybersecurity programs, standard operating procedures, and instructions. Ensure personnel provided by the contractor meet or exceed the AQL: 100% Compliant requirement. Perform all duties of Task 4, paragraphs 5.1 through 5.7. Develop information systems assurance programs and control guidelines in accordance with the Risk Management Framework (RMF) and the current approved DoD and DoN Assessment and Authorization (A&A) standards. Develop, review, and advise on system Plan of Action and Milestones (POA&M), new/existing cybersecurity policies and instructions, A&A packages, and system security controls. Interface and respond to cybersecurity and A&A requirements from Echelon II/III commands, designated Navy Authorizing Officials (NAO), and designated Functional Authorizing Officials (FAO). Support command cybersecurity inspections and audits, including Command Cyber Readiness Inspections (CCRI) and Inspector General (IG) audits. Serve as a member of the command Configuration Control Board (CCB). Benefits Health Care Plan (Medical, Dental & Vision) Retirement Plan (401k) Life Insurance (Basic, Voluntary & AD&D) Paid Time Off (Vacation, Sick & Public Holidays) Family Leave (Maternity, Paternity) Short Term & Long Term Disability Training & Development Wellness Resources Stock Option Plan

Job DescriptionDescription: Tamayo Federal Solutions, LLC, a Department of Defense contractor, is now hiring a Cyber Security to support the customer and shall provide system administration services to the Government for both physical and virtual hosted applications. You will provide all services necessary to ensure the efficient operation of all physical and virtual servers. Be knowledgeable of Security/IA products such as PKI, VPN, firewalls, and intrusion detection systems. You will support Government requirements to maintain data center computing, storage, and networking capabilities at Government data centers and within associated commercial cloud environments. We are seeking a Cyber Security who will be part of an energetic, results-driven team. In this role, you will be responsible for supporting information systems security engineering services required to properly secure and accredit storage, network, and computer resources. Responsibilities include but are not limited to: Familiar with a variety of the field's concepts, practices, and procedures Relies on extensive experience and judgment to plan and accomplish goals and independently performs a wide variety of complicated tasks May provide consultation on complex projects and is considered to be the top-level contributor/specialist. May lead and direct the work of others Performs a variety of routine project tasks applied to specialized technology problems Tasks involve integration of electronic processes or methodologies to resolve total system problems, or technology problems as they relate to Information Assurance requirements Conducts security assessments and security consulting services Analyzes information security requirements Knowledgeable about DoD and DoN Information Assurance rules and regulations Under general supervision, designs, develops, engineers and implements solutions to MLS requirements Gathers and organizes technical information about an organization's mission goals and needs, existing security products and ongoing programs in the MLS arena Performs risk analyses, which also includes risk assessment Provides technical support for secure software development and integration tasks, including reviewing work products for correctness and adhering to the design concept and to user standards Analyzes and recommends resolution of security/IA problems on the basis of knowledge of the major IA products and services, an understanding of their limitations, and knowledge of the IA disciplines Requirements: REQUIREMENTS: - U.S. Citizenship required. - Candidate must be Secret Clearance Eligible - 5 years professional experience in cyber security or related field Tamayo Federal Solutions, LLC offers a full package of benefits and competitive salary, excellent group medical, vision, and dental programs; 401(k); tuition reimbursement; employee training, development, and education programs; advancement opportunities; and much more! EEO/AA Employer. Protected Veterans and individuals with disabilities are encouraged to apply. Please NO RECRUITERS - Job Applicants ONLY

Seeking a full-time, experienced Navy Qualified Validator (NQV) to provide advanced Cybersecurity and Risk Management Framework (RMF) support for Navy systems and networks. The ideal candidate will bring deep expertise in Cybersecurity Assessment & Authorization (CS/A&A) processes, vulnerability assessments, and Navy-specific compliance standards. This role requires a strong mix of technical, analytical, and documentation skills to ensure Navy systems achieve and maintain Authorization to Operate (ATO) in compliance with DoD and DON policies. Duties & Responsibilities Perform Cybersecurity Assessment & Authorization (CS/A&A) analysis, ensuring compliance with DoDI 8510.01 (RMF) and Navy requirements. Conduct risk assessments, risk mitigation analysis, and vulnerability analysis across systems, applications, and networks. Provide NQV validation support for Navy systems, ensuring compliance with DoN A&A and RMF standards. Execute Security Test and Evaluation (ST&E) activities, including analysis, reporting, and risk recommendations. Manage and process Security Technical Implementation Guides (STIGs) using automated tools (e.g., SCAP, STIGMAN, eMASSter). Maintain and update system records in Enterprise Mission Assurance Support Services (eMASS) and other RMF repositories. Develop and execute Standard Operating Procedures (SOPs), CONOPs, Business Rules, and Contingency Plans for Navy systems. Provide expert firewall policy and ports/protocols configuration support. Develop and maintain hardware/software inventories, network boundary diagrams, and technical documentation. Upload vulnerability scan data into VRAM and maintain baseline system configuration compliance. Provide executive-level reporting, including Plans of Action and Milestones (POA&M) and risk mitigation recommendations. Advise leadership on compliance with Federal, DoD, and DON cybersecurity laws, directives, and policies. Navy Qualified Validator (NQV) credential with registration. Cybersecurity / RMF requirements (DoDI 8510.01). System/network vulnerability analysis and mitigation strategies. Security Test & Evaluation (ST&E) processes and reporting. STIG processing and automated compliance tools (SCAP, Evaluate STIG, STIGMAN, EMASSter). RMF documentation and repositories, especially eMASS. Contingency planning, training, and execution. Firewall policy configuration and ports/protocols management. VRAM vulnerability baseline uploads and configuration tracking. Expert-level knowledge of DoD/DON cybersecurity directives (FISMA, DoDI 8500.01, SECNAV 5239, NIST SP 800 series, etc.). Knowledge of OPNAVINST N9210.3 for safeguarding Naval Nuclear Propulsion Information. This job description in no way states or implies that these are the only duties to be performed by this employee. He or she will be required to follow any other instructions and to perform any other duties requested by his or her supervisor Education & Experience Requirements Must have a minimum of 4 years' related experience Bachelor's degree in an IT-related discipline (e.g., Computer Science, Information Technology, Software Engineering) or Level II Certification (Security+ or better) AND four (4) years of relevant experience as described above. Certifications such as Microsoft Certified: SharePoint Server Hybrid Administrator Associate, Microsoft Certified: Windows Server Administrator, and CompTIA Security+ are desired. Active Navy Qualified Validator (NQV) registration SECURITY CLEARANCE REQUIREMENTS: Secret Skill & Certification Requirements Active Navy Qualified Validator (NQV) registration. Fully qualified per DoD 8570.01M requirements (IAT Level II or IAM Level II). Demonstrated experience with eMASS, STIG processing tools, and vulnerability assessment tools. Strong communication skills with ability to produce executive-level reports, POA&Ms, and project documentation. Direct experience certifying and accrediting DON information systems, networks, and Platform IT. Proven ability to advise Navy leadership on cybersecurity strategies and risk management. Strong technical writing and presentation skills for producing high-quality deliverables. Institutional knowledge of Navy cybersecurity mission-critical procedures, systems, and processes. Must be proficient in the use of Microsoft Office Applications (Outlook, Word, Excel, PowerPoint and Access), and other standard (Customer specified) applications. Position requires sitting, for long periods of time. (Sedentary Work) Most duties require extended use of a keyboard and computer monitor May require lifting of 20-50 lbs LCI is an Equal Opportunity Employer Veteran/Disabled Leader Communications is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability. If you'd like to view a copy of the company's affirmative action plan or policy statement, please email **************

Designs, tests, and implements state-of-the-art secure operating systems, networks, and database products. Conducts risk assessment and provides recommendations for application design. Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access. Uses encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security research. May prepare security reports to regulatory agencies. Minimum Confidential Clearance required to start. The candidate will assist system owning engineers with the selection, application and implementation of security controls on various network systems. Primarily this will be assessing compliance of various network technologies with security controls and determining the security impacts of network infrastructure changes. The ability to quickly learn new technologies and to turn general principles into concrete implementations will be helpful. The candidate must be able to: * Interpret security controls and guidance (e.g. DIACAP, DOD/NIST RMF, etc.) for applicability to specific technologies * Apply those controls in a technical fashion to a variety of networks, systems, technologies and components. * Assess device configurations and determine compliance with STIGs Experience: * Four or more years' of experience with either IT Network administration or IT System administration * Four or more years' of experience executing DoD STIG testing with demonstrated analysis proficiency * Prior direct experience with network technologies (Layer 3 switches, firewalls, etc.) and networking protocols and concepts such as OSPF, RADIUS, Access Control Lists and port security Preferred: * Two to four years' experience with virtualization technologies such as; VMware, ESXi, server virtualization, network virtualization, storage virtualization, virtual router, vSwitches and management of virtual applications * Facilitating discussions with cross-sectional teams to compile the compliance documents * Direct experience with Splunk, installation, configurations and creating deliverables * Direct experience configuring Cisco, Juniper, or Alcatel devices * Direct experience with tools such as Wireshark, Net Management solutions and logging solutions * Prior experience with system administration, operating system hardening or control systems/SCADA * DoD 8140 recognized certifications, e.g. Security+, Network+, CCNA, desired. Basic Qualifications * Bachelor's Degree and 9 years of experience OR * Master's Degree and 7 years of experience OR * Ph.D. and 4 years of experience. * A relevant professional certification can be substituted for a Bachelor's Degree.

Location: Virginia Beach VA Required Clearance: Secret - Top Secret SCI Certifications: DoD 8570.01-M in accordance with (IAW) DFARS ************ Baseline Certification, minimum IAT Level I, Level II or Level III depending on position hired to fill Required Education: Bachelor's degree in Cybersecurity, Cyber Operations, Cyber Engineering, Information System, Information Technology, Computer, Electrical, or Electronics Engineering, Software Engineering, Computer Science, Mathematics with a concentration in Computer Science, or equivalent to above disciplines Required Experience: Two (2) Years for Level I, five (5) Years for Level II and ten (10) years for Level III Position Description: PingWind is seeking the right fit to join a team of Cyber professionals as they support critical functions to provide Cyber Security for the Navy's network. Depending on the position hired to fill, you will be ensuring the highest level of cyber security by implementing STIGS, performing scans using tools such as ACAS, and tracking/patching/mitigating vulnerability findings. Key goal is to ensure the warfighter can achieve their mission without the interference of adversaries and opportunistic hackers. Work is performed in support of Naval Surface Warfare Center (NSWC), DAHLGREN DIVISION in Virgina Beach as it conducts Research, Development, Test & Evaluation (RDT&E), analysis, systems engineering, integration, and certification of complex Department of Defense systems. Primary Responsibilities: Level: I Two (2) years and Level II: Five (5) years of full-time professional experience performing system hardening with demonstrated experience in the following areas: • Performing STIG implementation;• Performing vulnerability assessments with the Assured Compliance Assessment Solution tool;• Experience with Security Management policy guidance and directives; and• Remediating vulnerability findings to include implementing vendor patches on both Linux and Windows Operating systems.Level III: Ten (10) years of full-time professional experience performing system hardening with demonstrated experience in the following areas:• Computer security, military system specifications, Security Management policy guidance and directives, DoD and cybersecurity policies;• Risk Management Framework (RMF) and the implementation of Cybersecurity and IA boundary defense techniques and various IA-enabled appliances. Examples of these appliances and applications are Firewalls, IDS, IPS, Switch/Routers, Cross Domain Solutions (CDS), EMASS and Endpoint Security Solution (ESS);• Performing STIG implementation;• Performing vulnerability assessments with the Assured Compliance Assessment Solution tool; and• Remediating vulnerability findings to include implementing vendor patches on both Linux and Windows Operating systems. Required Qualifications: • Secret - Top Secret SCI • DoD 8570.01-M in accordance with (IAW) DFARS ************ Baseline Certification, minimum IAT Level I, Level II or Level III depending on position hired to fill• Bachelor's degree in Cybersecurity, Cyber Operations, Cyber Engineering, Information System, Information Technology, Computer, Electrical, or Electronics Engineering, Software Engineering, Computer Science, Mathematics with a concentration in Computer Science, or equivalent to above disciplines• Two (2) Years for Level I, five (5) Years for Level II and ten (10) years for Level III Desired Qualifications/Experience: • Navy experience a plus • DoD 8570.01-M CSSP certification• RMF experience About PingWind PingWind is focused on delivering outstanding services to the federal government. We have extensive experience in the fields of cybersecurity, development, IT infrastructure, supply chain management and other professional services such as system design and continuous improvement. PingWind is a VA CVE certified Service-Disabled Veteran-Owned Small Business (SDVOSB) with offices in Washington DC and Northern Virginia. **************** Our benefits include: • Paid Federal Holidays• Robust Health & Dental Insurance Options• 401k with matching• Paid vacation and sick leave• Continuing education assistance• Short Term / Long Term Disability & Life Insurance• Employee Assistance Program through Sun Life Financial EAP Guidance Resources Veterans are encouraged to apply PingWind, Inc. does not discriminate in employment opportunities, terms, and conditions of employment, or practices on the basis of race, age, gender, religious or political beliefs, national origin or heritage, disability, sexual orientation, or any characteristic protected by law.

Akira Technologies is seeking a Cyber Analyst team member who is responsible for the analysis of all technology devices which may include Operational Technology (OT) and Industrial Control Systems (ICS) as well as on-premises and cloud enterprise networks. This includes analysis of device communication, forensic analysis of Windows or Linux systems and servers, timeline analysis of activity on these endpoints, user permission and authentication audits, log analysis, and malware identification/triage. This role supports a government client in the following locations five days a week: Norfolk, VA. Active Secret clearance or higher is also required for this role. An ideal candidate for this position will be a proactive self-starter who has experience with system administration, Windows and Linux operating systems (OS) mechanics including filesystem structures, disk and memory forensics, cyber aware Operational Technology or Control Systems operators, commonly used mechanisms for maintaining security persistence, privilege escalation, and lateral data movement, operating system log analysis, and triaging suspicious file artifacts for unusual behavior. This role requires a familiarity with what routine OS activities and common software/user behavior looks like in the context of forensic artifacts or timelines. Analysts should also be familiar with common categories and formats of host-based indicators of compromise (IOCs) and how/where they can be leveraged to identify known-bad files/activity on an endpoint. Candidate will utilize the Cyber Kill Chain and synthesize the entire attack life cycle along with creating detailed reports on how impacts may or have occurred. Job Responsibilities Support SOC team in operating and performing duties in a Security Operations Center (SOC) to provide a secure environment that facilitates monitoring, incident response, malware analysis, and threat hunting activities. Develop and utilize analytics on the security information and event management (SIEM) platform to monitor for security alerts and coordinate vulnerability assessments and artifact collection across servers and network devices. Asses Security Technical Implementation Guides (STIGs) compliance and completion. Utilize asset mapping tools to verify connected inventory. Handle Information Assurance Vulnerability Management (IVAM) notifications. Evaluate network structures and device configurations for security risks, offering recommendations based on best practices, and gather data to identify and respond to network intrusions. Analyze network traffic and system logs to identify malicious activities, vulnerabilities exploited, and methods used, and develop processes to enhance SOC response and efficiency. Conduct comprehensive technical analyses of computer evidence, research and integrate new security tools into the SOC, and synthesize findings into reports for both technical and non-technical audiences. Job Qualifications Active Secret security clearance or higher. At least 3 years, (Journeyman), or applicable 1 to 2 years (Junior) of experience in security operations, demonstrating analytical duties and preforming host or network security analysis. Proficient in analyzing cyber-attacks, with a deep understanding of attack classifications, stages, system/application vulnerabilities, and compliance with Department of Defense (DoD) policies and procedures. Applied knowledge of network topologies, protocols (e.g., TCP/IP, ICMP, HTTP/S, DNS, SSH, SMTP, SMB), and experience with tools like Palo Alto, Elastic SIEM, Cribl, Splunk, VMware, Security Center. Capable of attack reconstruction based on network traffic, integrating Threat Intelligence, and familiar with MITRE ATT&CK framework, with the ability to collaborate effectively across multiple locations. Preferred Skill Sets Knowledge of Operational Technology (OT) or Industrial Control Systems (ICS) Strong analytical and troubleshooting skills Able to provide expert content development in Splunk Enterprise Security using tstats and data models Understands how to utilize knowledge of latest threats and attack vectors to develop correlation rules for continuous monitoring on various security appliances Experience in other tools and protocols as applicable such as Nessus, Endgame, CrowdStrike, Gray Noise, Shodan, Bacnet, MODBus, SCADA systems, and PCAP Review logs to determine if relevant data is present to accelerate against data models to work with existing use cases Familiar with the operations and functions of Nessus or security center management Can assist and provide technical input to research, discover, implement hardware and software Understands importance and fundamentals of logistics and evidence handling Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), or relevant IT technology certification Salary Range: $75,000 to $100,000 Akira's pay range for this position considers various factors including skills, years of experience, training, licenses, certifications, alignment with market data, and internal equity in the organization. This pay range estimate is a general guideline only and not a guarantee of compensation or salary, which Akira believes to be done in good faith in compliance with local laws. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. General Description of Benefits Akira offers its employees multiple options for medical plans (some with Health Savings Account), dental plans, and vision coverage, and a 401(k) plan with employer match. To promote work/life balance, Akira offers paid time off, including vacation and sick time, holidays, paid parental leave, military leave, bereavement leave, and jury duty leave. We also offer short and long-term disability benefits to protect employee income in the event of sickness or injury, life insurance, accidental death and dismemberment insurance, and critical illness insurance. Akira also offers tuition, training, and certification reimbursement for professional development and career advancement. Akira regularly reviews our total rewards package to ensure our offerings remain competitive and reflect the values and needs expressed by our employees. About Akira Technologies Akira strives to meet and exceed the mission and objectives of US federal agencies. As a leading small business cloud modernization and data analytics services provider, we deliver trusted and highly differentiated solutions and technologies that serve the needs of our customers and citizens. Akira serves as a valued partner to essential government agencies across the intelligence, cyber, defense, civilian, and health markets. Every day, our employees deliver transformational outcomes, solving the most daunting challenges facing our customers. Akira is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

GENERAL SUMMARY: Seeking full-time Network Engineer to join the Cyber Readiness Team supporting the Atlantic Surface Fleet in Norfolk, Virginia. An applicant that can demonstrate expert knowledge in the design, configuration, deployment and management of Aruba EdgeConnect SD-WAN solutions will fill this position. The candidate may be required to travel between 5-10% to assist forward-deployed units. LOCATION: Norfolk, VA. SPECIFIC DUTIES & RESPONSIBILITIES: Provide SD-WAN orchestration and management using Aruba Orchestrator for provisioning, deployment, configuration, monitoring, and troubleshooting EdgeConnect SD-WAN solutions. Manage user authentication, authorization, role-based access control, RADIUS/TACACS+, policy management, and captive portal using Aruba ClearPass Policy Manager (CPPM) and ClearPass Guest. Deploy, provision, manage, and monitor Aruba Instant APs using Aruba Instant UI, Aruba Central and/or Aruba Mobility Controller capabilities. DESIRED SKILLS AND ABILITIES: HPE Aruba SD-WAN Certifications Cisco Certified Network Associate (CCNA) Experience with Aruba and/or Cisco wireless controllers, access points, switches and routers Understanding of DoD Cybersecurity policies and programs Experience implementing DISA Security Technical Implementation Guides (STIGs) REQUIREMENTS: In-depth knowledge of current SD-WAN concepts, industry standards, security, and best practices. At least five years' hands-on experience with any SD-WAN technologies to include at least two years' experience with Aruba EdgeConnect SD-WAN solutions. Hands-on experience using Aruba ClearPass Policy Manager (CPPM), ClearPass Guest, and Aruba Orchestrator in the management of EdgeConnect SD-WAN solutions. Active Secret Security Clearance Current US Passport 8570 Information Assurance Technician (IAT) level II or IAM/ISSM level I Certification Bachelor's Degree or 5 years' experience in related field

Full-time Description About Us: eSimplicity is a modern digital services company that partners with government agencies to improve the lives and protect the well-being of all Americans, from veterans and service members to children, families, and seniors. Our engineers, designers, and strategists cut through complexity to create intuitive products and services that equip federal agencies with solutions to courageously transform today for a better tomorrow. Responsibilities: Support all matters related to Sensitive Compartmented Information (SCI) security within NIWDC programs and facilities. Assist in the implementation of all compliant SCI security policies and procedures for classified materials, documents, and equipment. Oversee and enforce compliance with DoD, Navy, and IC security policies (e.g., ICDs, DoDM 5105.21, and related directives). Conduct security briefings, debriefings, indoctrinations, and training for personnel with access to SCI materials. Coordinate and liaise with program leadership, EW operators, intelligence personnel, and higher headquarters on all matters involving security. Monitor and ensure the physical security of SCIFs, secure IT systems, and related classified workspaces. Investigate and report security violations, incidents, or potential compromises of classified information. Provide security escorting for uncleared personnel as required. Process and track incoming and outgoing Visit Authorization Requests. Maintain personnel clearances and access records in coordination with security offices and government databases (DISS, Scattered Castles). Advise leadership on risk management, threat awareness, and the integration of security into NIWDC operations. Other administrative duties as assigned Requirements Required Qualifications: A bachelor's degree in computer science, Information Systems, Engineering, Business, or other related scientific or technical discipline. With four (4) years of general information technology experience and at least two (2) years of specialized experience, a degree is not required. Experience serving as a Special Security Officer (SSO) or working in a SCI security management role. Familiarity with DoD and Intelligence Community security regulations, processes, and systems. Strong organizational and problem-solving skills; ability to work under pressure and manage multiple security requirements simultaneously. Excellent communication and interpersonal skills for working with leadership, operators, and intelligence/security teams. Working knowledge of Navy Information Warfare. Completion of SSO training courses or security management certification. Active TS/SCI Clearance Working Environment: This position is 100% in-person in Chesapeake, VA remote or hybrid work is unavailable. Benefits: We offer highly competitive salaries and full healthcare benefits. Equal Employment Opportunity: eSimplicity is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, sexual orientation, gender identity, or status as a qualified individual with a disability. Salary Description $76,500.00 - $90,000

The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security. Be a part of the Telos culture and see what sets us apart! Telos offers an excellent compensation package with benefits that include generous paid time off, medical, dental, vision, tuition reimbursement, and 401k. Our employees enjoy more than just a great work environment! This position will be based at Virginia Beach, VA. Responsibilities: The Information System Security Specialist II provides cybersecurity compliance and accreditation support for Navy information systems under the Naval Surface Warfare Center Dahlgren Division (NSWCDD). The role ensures information systems meet all DoD cybersecurity and Risk Management Framework (RMF) requirements throughout the system lifecycle - from design and implementation through sustainment and re-accreditation. The position supports both afloat and shore-based systems, working closely with engineers, system administrators, and program managers to identify vulnerabilities, develop mitigation strategies, and maintain Authorization to Operate (ATO) compliance. Key Responsibilities Accreditation & Compliance Support * Develop, maintain, and update RMF documentation including Security Plans (SP), POA&Ms, Risk Assessments, and Continuous Monitoring Strategies. * Support preparation, submission, and tracking of Assessment and Authorization (A&A) packages using tools such as eMASS. * Review and apply DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs) to ensure systems meet DoD compliance standards. * Participate in A&A and cybersecurity readiness reviews, providing technical recommendations to system owners. * Ensure all assigned systems maintain an active Authorization to Operate (ATO) and adhere to DoD, NAVSEA, and SECNAV cybersecurity policies. Cybersecurity Engineering and Risk Management * Conduct risk assessments and vulnerability analyses using automated scanning and compliance tools (e.g., ACAS, STIG Viewer, SCAP, Security Content Automation Protocol). * Identify, document, and assist in remediation of system vulnerabilities and security incidents. * Contribute to cybersecurity architecture planning, ensuring implementation of secure configurations, least privilege, and zero-trust principles. * Review and maintain Interconnection Security Agreements (ISAs) and other boundary documentation to ensure continuous authorization alignment. * Support implementation of Defense-in-Depth and supply chain risk management strategies. Operations & Maintenance * Provide ongoing cybersecurity monitoring and auditing support for operational systems. * Track and report system vulnerabilities in accordance with Navy's Vulnerability Remediation Asset Management (VRAM) system. * Coordinate with system owners and administrators to ensure timely implementation of IAVAs, security patches, and configuration updates. * Assist in incident response procedures and forensic investigations, documenting findings and mitigation actions Job Requirements Qualifications: * Education: Bachelor's degree in Cybersecurity, Information Systems, Information Technology, Computer Science, or related discipline. * Experience: Minimum 5 years of professional experience in information system security, accreditation, or RMF compliance roles (3 years acceptable with advanced degree). Certifications: * Must meet DoD 8570.01-M IAM Level II certification requirements (e.g., CAP, CISM, CISSP [Associate], GSLC, or CASP+ CE). * Must comply with DFARS ************ Information Assurance Contractor Training and Certification. Clearance: Active SECRET security clearance; ability to obtain and maintain TS/SCI as required. Preferred Qualifications * Hands-on experience with Navy or DoD RMF processes and A&A toolsets (eMASS, XACTA, VRAM, ACAS). * Working knowledge of NIST SP 800-37, 800-53, 800-171, and CNSSI 1253 security control frameworks. * Experience developing and maintaining security documentation and policy artifacts. * Familiarity with network, system, and software engineering concepts relevant to DoD environments. * Ability to brief technical content to government leadership and participate in CCB/IAWG meetings. Desired Attributes * Strong attention to detail and documentation discipline. * Ability to work independently and collaboratively in a multi-contractor team environment. * Analytical mindset with the ability to interpret complex cybersecurity compliance requirements and translate them into actionable tasks. * Effective written and verbal communication skills for technical and executive audiences. The successful candidate must meet eligibility requirements to access sensitive information, which requires US citizenship. Telos maintains a drug-free workplace and will conduct drug testing on all applicants who have accepted an offer of employment. Telos Corporation participates in the E-Verify program. Therefore, any employment with Telos will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. Telos offers excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future. Telos Corporation and its subsidiaries are committed to equal opportunity for all, without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. Telos Corporation will make reasonable accommodations for known physical or mental limitations of otherwise qualified employees and applicants with disabilities unless the accommodation would impose an undue hardship on the operation of our business. If you are interested in applying for an employment opportunity and feel you need a reasonable accommodation pursuant to the ADA, please contact us at **************. If you require relay service assistance, please click on the following link to review information on your state's relay service: ********************************** Telos Corporation is an EEO/AA employer. Job Type Full-Time Location Virginia Beach, VA 23461 US (Primary) Telos offers an excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future. Telos and its subsidiaries are an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Job Description The Cyber Analyst, Mid-Level, applies expertise and work experience executing cyber risk assessments. The ideal candidate will provide a broad range of information assurance activities and has a strong knowledge of systems, operating environments, system security, and networking. *This position requires onsite work Duties Determines system vulnerabilities and residual risk based on analysis of technical artifacts, interviews, and evaluation of current system state Evaluates effectiveness of proposed mitigations Contributes toward recommendations on technical/policy changes, processes and methodologies to assess and mitigate cybersecurity risk on information technology within the SCA's appointed authorization boundary Works with other Cyber Analysts, Subject Matter Experts (SMEs), and SCARs to ensure that all cybersecurity analysis and cybersecurity risk assessments are completed with time and quality standards established by Division leadership and Task Lead Supports program and projects with security and information assurance requirements elicitation based on customer and SME communication and independent research Performs all other duties, as assigned Requirements Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Information Systems required. Equivalent work experience may be substituted for Bachelor's degree. Master's degree preferred. IAM Level II Certification in accordance with the Department of Defense (DoD) approved 8140 baseline certifications required Must have at least 5 years of experience in cyber risk assessment in cyber risk assessment or experience with technologies utilized in AFNET or DoD systems Proficiency with eMASS preferred Must have familiarization with NIST SP 800-53, AFI 17-130, and DODI 8510.01 Strong planning, organization, and analytical skills, with attention to detail required Must be able to take initiative and be self-motivated Quick learner; passionate about technology and able to learn new technology areas as directed Ability to elicit, identify, and research information assurance requirements and perform as a member of an assessment review team Effective team player with good interpersonal skills Must be able to work independently with minimal supervision Excellent written and verbal communication skills required Must be able to display professionalism in all situations Knowledge in emerging technologies including cloud, AI and virtualization, networking, systems engineering, identity management, web technologies, system administration, and system security is preferred This position requires onsite work. Must be flexible to be able to work in the office, as assigned. Must have an active DoD security clearance

The Senior Security Analyst will be responsible for supporting MI Technical Solutions SCORE program development by establishing adequate and reliable security policies and procedures for Commander Navy Regional Maintenance Command (CNRMC) and the oversight of Regional Maintenance Centers (RMC) Enterprise security programs, including Personnel Security, Physical Security, Anti-Terrorism/Force Protection, Operations Security and Industrial Security. Responsibilities: Responsible for protecting classified national security information and other sensitive information originated, or controlled by CNRMC from theft, loss, misuse, fraud, espionage, or sabotage. Assists and advises in matters pertaining to the enforcement of regulations governing the receipt, dissemination, reproduction, regarding, transmission, safekeeping, and destruction of classified material. Technical and administrative support in the collecting, collating, display, analysis, interpretation, and actions associated with organizational security operations, Navy DOD Security Policy and protocol. Command Security Records Management and Knowledge Management. Manage Trusted Workforce Enrollment, Visit Access Requests, Personnel Clearance System, and Key Request programs. Participate with CNRMC member in the Security Community of Practice and other organizational initiatives supporting mission goals and security initiatives. Assess large data sets and distilling into easily understood summary details for presentation at the Flag/SES level. Analyzes, plans, advises, and/or evaluates the development and implementation of policy that promotes Fleet readiness, and compliance related to current Department of Defense (DoD), Department of Navy (DoN), Chief of Naval Operations (OPNAV), Fleet Forces Command (FFC), U.S. Pacific Fleet (PACFLT), and Naval Sea Systems Command (NAVSEA) Security Policies. Contributes to the development and implementation of CNRMC and RMC Enterprise Strategic policies, objectives, and goals. Executes, develops, and implements procedures for compliance, training and development of security related certifications. Provides technical security consultation services and controls matters concerning classification, inventory, safeguarding, handling, transmission, and destruction of classified information. Serves as an expert for the RMC Enterprise at conferences, briefings, and meetings to inform/convey command/naval positions and/or to persuade executive management to accept controversial changes. Incumbent uses tact and negotiating skills to sell appropriate solutions or develop viable alternatives. Job Qualifications: Must have a bachelor's degree and at least 10 years' experience or associates with at least 15 years' experience. Must have US government security experience. Must have a working knowledge of the Navy Regional Maintenance organization and knowledge of Navy organizational structure and department codes. Must have experience and working knowledge with DOD security, dealing with the eight security pillars: Information, Personnel, Physical, Antiterrorism & Force Protection, Industrial, OPSEC, Insider Threat, Security Education, Awareness Must be familiar with government security related database management systems. Must maintain a highly trusted persona: security, confidence, and high ethics. Must have experience in applying Knowledge Management tools and familiarity with Knowledge Management resources. Must have an advanced knowledge in MS Office Suite (e.g., Excel, PowerPoint, Word, Outlook). Must be detailed-oriented and able to multiple-task simultaneously Must have excellent organizational, people management, communication (written and verbal), and problem-solving skills Must be a team player but be also able to work independently Requirements: Must be a U.S. Citizen Must have the ability to obtain and maintain a U.S. Government Security Clearance at Secret level. Work may involve sitting or standing for extended periods. May require lifting and carrying up to 25 lb. Must have sufficient mobility to enter areas of industrial/commercial facilities where necessary. Must put forward a professional behavior that enhances productivity and promotes teamwork and cooperation. Commuting and traveling up to 10% may be required, as needed, to remote installations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

The Cyber Analyst, Senior, applies expertise and work experience executing cyber risk assessments to perform duties assigned by the Security Control Assessor (SCA) for the Department of the Air Force (DAF) Enterprise Authorizing Official (EAO) systems. The ideal candidate will provide a broad range of information assurance activities and possess a strong knowledge of systems, operating environments, system security, and networking. **This position requires onsite work in Hampton, VA. Job Duties Determine system vulnerabilities and residual risk based on analysis of technical artifacts, interviews, and evaluation of current system state Evaluate effectiveness of proposed mitigations Provide recommendations to leadership on technical and policy changes, processes and methodologies to assess and mitigate cybersecurity risk on information systems Work with other Cyber Analysts, SMEs and SCA-Rs to ensure that all cybersecurity analysis and cybersecurity risk assessments are completed within time and quality standards established by Division leadership and Operations Manager/Task Lead Train new team members in the proper methods to perform assessment reviews and support development of training materials for field personnel (system owner personnel) to support effective and efficient RMF processes Support program and projects with security and information assurance requirements elicitation based on customer and subject matter expert communication and independent research Support Operations Manager/Task Lead with program execution, deliver program deliverables, and support strategic process development Perform all other duties, as assigned Requirements Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Information Systems, or related field required. Equivalent work experience may be substituted for degree requirement. Master's degree is preferred. IAM Level II or III Certification in accordance with the DoD approved 8140 baseline certifications required Must have at least 10 years of experience in cyber risk assessment or experience with technologies utilized in AFNET or DoD systems Proficiency with eMASS preferred Must have familiarization with NIST SP 800-53, AFI 17-130, and DODI 8510.01 Strong planning, organization, and analytical skills, with attention to detail required Must be able to take initiative and be self-motivated Must be a quick learner, passionate about technology and able to learn new technology areas, as directed Must be able to elicit, identify, and research information assurance requirements and perform as a member of an assessment review team Must be able to work effectively as a team member, as well as lead others to meet team and overall company goals and objectives Must be able to work independently with minimal supervision Excellent verbal and written communication skills and exceptional interpersonal skills required Must be able to display professionalism in all situations Must be able to implement, monitor and maintain quality control standards Knowledge in emerging technologies, including cloud, AI and virtualization, networking, systems engineering, identity management, web technologies, system administration, and system security is preferred This position requires onsite work. Must remain flexible to be able to work in the office, as assigned. Active DoD security clearance required Benefits Referentia offers a comprehensive set of benefits which includes health insurance coverage (medical, dental, vision, drug), paid time off, group term life insurance, accidental death & dismemberment insurance, income protection coverage, 401K retirement plan with employer matching, tuition reimbursement, and more. We are proud to be an Equal Employment Opportunity Employer.

Falconwood is a woman-owned, veteran-owned company providing consultation and programmatic support to Department of Defense Information Technology (IT) initiatives and programs. We provide expert advice and consultation on a diverse range of IT subjects, focusing on acquisition, policy, cybersecurity, engineering, and process development. The Information Assurance Analyst will be responsible for performing duties associated with development and review of RMF packages in support of the Commander, Naval Information Forces (NAVIFOR) N6 Directorate. Responsibilities The candidate will support Assessment and Authorization efforts for NAVIFOR N6 directorate and subordinate commands through: Support program's authorization efforts throughout the Navy RMF process. Track to ensure quality and timeliness of RMF package artifacts and deliverables. Analyze general information assurance-related technical problems and provides recommendations and technical support in solving these problems. Assess and supports implementation of solutions that meet network security requirements. Review vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle. Perform duties associated with development and review of RMF packages. Support continuous improvement of strategies, processes, and procedures aligned with existing DoN Navy processes. Ensure the necessary planning, outreach, execution, and dissemination of lessons learned/after action reports. Qualifications Clearance: TS/SCI clearance required (a current SSBI within the five-year scope). Education: Bachelor of Science degree in Information Systems, Computer Science, Cybersecurity, Information Systems, Computer Engineering or related discipline. Certifications: Information Assurance Certification (GIAC) - Security Leadership Certification (GSLC), Certified Information system Security Professional (CISSP), or Certified Information Security Manager (CISM). Experience: At least one-year relevant experience performing Navy IA or cybersecurity functions. Preferred: Experience in an IT operational capacity (e.g., operations/project support, helpdesk). Strong analytical, problem-solving, and project management skills. Familiarity with U.S. Navy culture, processes, command organizations, and IT infrastructures. Ability to analyze general information assurance-related technical problems and provides recommendations and technical support in solving these problems. Be able to assess and support implementation of solutions that meet network security requirements. Experience with vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle. Advanced technical writing skills for developing documentation, reports, and training materials. The candidate must be: Familiar with the Navy RMF process. Capable of performing effectively individually and as part of a team. Technically savvy and possess excellent communication skills. Have effective critical thinking and problem-solving skills. Self-motivated and able to successfully deliver with minimal supervision. Proficient in Microsoft applications such as Word, Excel, PowerPoint, and Outlook. This position is fast paced and high demand that is a hybrid position (onsite and remote) in Suffolk, VA. Limited to no travel is anticipated. Pay Range Base pay is $85,000-$95,00, subject to skill level, qualifications, and location. Benefits Highlights: 401k, Tuition Reimbursement, Health/Dental/Vision Insurance, PTO, Federal Holidays, Performance Increases, Reserve Duty Compensation and more!

Input is currently seeking a Public Key Infrastructure (PKI) Auditor & Trainer/Information Systems Security Officer (ISSO) for a potential contract to assist the Department of the Navy (DON) Public Key Infrastructure (KPI) and Key Management Infrastructure (KMI) Services. Location(s): Andrews AFB, MD; Norfolk, VA; San Diego, CA; and Pearl Harbor, HI Key Responsibilities: Maintain Naval Communications Security Material System (NCMS) PKI Registration Authority (RA) and Local RA (LRA) systems, perform operating system updates and validate machines are operating in accordance with Authority to Operate (ATO). Coordinated with Navy Marine Corps Intranet (NMCI) for machine and network troubleshooting. Maintain standard system security and disaster recovery plans and ensure implementation across the detachment. Maintain enterprise architecture Standard Operating Procedures (SOPs) and documentation to include illustrations network topology, system access requirements and processes for obtaining material and replacement hardware and software. Function as the NCMS PKI liaison to external LRA sites providing assistance and information pertaining to System access, network access, peripheral devices. Liaison support also includes working with the government Information System Security Managers (ISSM), and Information System Security Officers (ISSO) to achieve and maintain ATO requirements. Perform Cybersecurity tasks to include validation of Assured Compliance Assessment System (ACAS) scans and patching, apply Security Technical Implementation Guides (STIGs). Properly secure and maintain PKI archives until moved to long term storage facility. Perform backups, validate scans, perform software updates as needed, and review workstation system logs. Complete compliance audits in accordance with Joint Force Head Quarters Department of Defense Information Network (JFHQ-DODIN) PKI Audit requirements, audits drafts, reports, track audit Plan of Action and Milestones (POA&M), schedule audits and perform Training and Assist Visits (TAV). Schedule, conduct and update PKI LRA, Trusted Agent (TA), System Administrator (SA), ISSO classroom training for newly appointed personnel through the Navy. Qualifications: Understanding of Department of Defense (DoD) Common Access Card (CAC) characteristics and CAC/Smart card operation and procedures to include CAC middleware and hardware, with a least one-year experience. Knowledge of the principles, concepts, and methodology of Information Technology (IT) processing and a working knowledge of computer system architecture, performance characteristics and DoD and Service IT security policies with a least one-year experience. Familiar with DoD 8520.02, Public Key Infrastructure and Public Key Enabling. Skilled verbal and written communication techniques required to conduct meetings, and prepare reports and other correspondence Must be able to work independently. Possess analytical processing skills. Possess DoD 8140 qualification of 461 Basic or 451 Intermediate upon first day of employment and continue to maintain extended training requirements as identified in SECNAV M-5239.2. Navy COOL - Navy Cyber Workforce (CWF) Program - CWF Model JFHQ-DODIN PKI Auditor Qualified or served as Navy RA, LRA or PKI ISSO for 3 years.

Electronic Security System (ESS) Engineer (Job ID:3995) Location: Norfolk, VA Remote Status: Hybrid Job Id: 3995 # of Openings: 1 Electronic Security System (ESS) Engineer Purpose: * Valkyrie Enterprises has an immediate need for Electronic Security System Engineer who will provide key support for Department of Defense (DoD). Department of State (DoS) and other US Federal Government Electronic Security System projects. * This position is hybrid and based in Norfolk Virginia. Job Description: * Responsible for designing, installing and commissioning Electronic Security Systems to DoD and DoS specific guideline and requirements. * Responsible for reviewing and interpreting Request for Proposal (RFP) / Performance Work Statement (PWS) documentation to support the development of cost estimates to include system design, Bill of Material (BOM) and project execution. * Responsible for the development of ESS documentation to include survey reports, drawing packages, test plans and procedures, training documents and maintenance plans. * Read and interpret customer requirements and develop responses to requests for information, proposals and quotes * Develop, read and interpret electrical, electronic, and electronic system schematics, technical data packages and installation design plans * Develop, read and interpret system test plans and procedures. * Serve as a Subject Matter Expert (SME) on security engineering needs and requirements regarding system performance, installations, and maintenance programs * Provide recommended improvements to existing systems and designs using industry best practices * Perform installation, maintenance, troubleshooting, and testing of security wiring & power circuits. Qualifications * Must have bachelor's degree in a technical discipline such as electrical engineering or computer science. Under unique circumstances, a graduate of a military advanced electronic or communication technician school can be used in lieu of a bachelor's degree * Must have 5 years of experience with design and 10 years of experience with installation or maintenance of electronics/electrical systems including, but not limited to: * Intrusion Detection Systems * Access Control Systems * Closed Circuit Television * Intercom Systems * Mass Notification Systems * IP Network Infrastructure * Conduit Installation * Low Voltage Electrical Systems * Must be able to use basic hand tools and test equipment. * Must have the ability to work in a demanding, deadline-driven environment, be detailed orientated, and self-motivated. * Must have strong verbal communication skills and the ability to work independently or under limited supervision. Desired Qualifications: * Manufacturer's certification or technical training is highly desirable (Lenel, Milestone, Security+. CISSP) is preferred * Certified System Engineer ICAM PACS (CSEIP) Certification is preferred. * Familiarity with US Navy (NIWC) and US Army (USACE) ESS requirements is preferred. * Knowledge of the National Electric Code (NEC) and practices such as grounding and electrical safety is strongly preferred. * Proficiency in AutoCAD or other Computer Aided Design applications is preferred. * Proficiency with Microsoft Office Products and Adobe Acrobat is preferred. * OSHA 10- or 30-hour Safety Certification and CPR and First Aid Certification is preferred. * Familiarity with and have a working knowledge of a multitude of systems including but not limited to these below processes is strongly preferred:: * DoD and DoS Security Systems and requirements * Access Control and Intrusion Detection Systems such as Lenel, Vindicator, AMAG, and DMP * IP CCTV Surveillance Systems such as Genetec, Axis, Pelco and Milestone. * Perimeter Protection Systems such as Southwest Microwave, Fiber SenSys and Protech * Mass Notification Systems such as Federal Signal, Cooper and SiRcom * Mechanical and electromechanical locking systems (electronic strikes, magnetic locks, etc.) Security Requirements: * Must be eligible to obtain and maintain a DoD "Secret" security clearance with the possibility to upgrade to "Top Secret" if required. * Must be a US Citizen with a valid Driver's License. Travel Requirements: * Between 15% - 50% Travel, international and domestic, depending on program requirements. * If position requires travel by domestic flight or access to secure federal facilities/military bases, candidate must be able to obtain (by start of position) and maintain appropriate identification credentials, such as REAL ID. (More information regarding REAL ID can be found: *************************** ). Physical Requirements: * Must be able to reach, climb, stoop, & kneel up to 75% of the time. * Repetitive motion, climbing, balancing, stooping, kneeling, crouching, crawling, reaching, standing, walking, pushing, pulling, lifting, grasping, hearing, and visual acuity (depth perception). * Must be able to lift up to 50 lbs. * Moving about to accomplish tasks or moving from one worksite to another. * Communicating with others to exchange information. * Repeating motions that may include the wrists, hands and/or fingers. * Subject to outside environmental conditions (extreme cold/heat), Inside or Outside / Noise levels Valkyrie strictly adheres to a policy of equal employment opportunity. This policy is based on Valkyrie's commitment to hire and retain qualified employees consistent with position requirements; and to seek, employ, promote and treat all employees and applicants for employment without regard to race, color, religious creed, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status or protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition, genetic information or sexual orientation or other protected characteristics. Additionally, Valkyrie Enterprises provides a variety of benefits to eligible employees to support your best health, wellness, and future, to include medical/dental/vision options, company paid life and disability insurances, 401(k) with match, education reimbursement, as well as company paid holidays and paid time off (PTO). Pay Range: $90,000 - $150,000 per year

Overview/ Job Responsibilities Sev1Tech is looking for an Information Systems Security Officer (ISSO) who can prepare, submit, and monitor accreditation packages through the Risk Management Framework (RMF) process ensuring receipt of Interim Authority to Test (IATT) or Authority to Operate (ATO) in support of the Naval Supply Systems Command (NAVSUP) Ordnance Information System (OIS) program. The ISSO will maintain current operating cybersecurity environment within AWS GovCloud operating environment. The ISSO will apply their knowledge of DOD Cybersecurity processes and best practices used to secure technical solutions, including applications, systems, architectures, and infrastructures on-site in Yorktown, VA (2nd preference is Mechanicsburg PA) 5 days a week. This critical role will also be responsible for: Meeting and maintaining DOD RMF CYBER certification and accreditation requirements, including researching, testing and providing technical information for obtaining required system accreditation. Developing Security Requirements Traceability Matrix (STRM), aligning security requirements with the individual components of a system. Performing checks of systems and applications for Information Assurance vulnerabilities using approved automated IA tools (ACAS, VRAM, SCAP-compliant scanners, DISA STIG Viewer, etc.), custom scripts and manual processes (i.e., Security Technical Implementation Guides [STIGS]). Monitoring OIS security posture, documenting raw findings in a quick look report, for customer notification. Create and maintain system Plan of Action and Milestones (POA&Ms) of open vulnerabilities and applied mitigations utilizing Department of Defense Enterprise Mission Assurance Support Service (eMASS) tool. Supporting the development and documentation of risk assessment results and recommendations using identified threats, applicable vulnerabilities, and likelihood of occurrence within context of risk tolerances Monitor all database and application software used in OIS for version change control and nearing/exceeding last date allowed in the Department of Navy Application Database Management System (DADMS). Coordinating/interfacing with OIS Technical Team, Defense Information Systems Agency (DISA), IA Staff, and Fleet Cyber Command to document, review, revise, and submit changes related to Ports, Protocols, and Services Management (PPSM), Access Control Lists (ACLs), and Whitelists. This support includes preparing and submitting the registration forms for new requirements. Supporting DOD IT Portfolio Repository-DON (DITPR-DON) to support the annual review. Providing recommendations for corrective actions and mitigation strategies. Producing security risk assessment briefs and reports for delivery to stakeholders and senior management. Support the DevSecOps team in implementing Cyber Security requirements to achieve and maintain accreditation and authority to operate within specified timelines. Interpret OS, web server, and database scans to facilitate resolving security findings with the DevSecOps team and external teams Conducting security monitoring through the use of VRAM (Vulnerability Remediation Asset Manager), and applying mitigation techniques to reduce and remediate vulnerabilities Coordinating / troubleshooting with afloat platforms to assist in identification and remediation of cybersecurity vulnerabilities within the Program of Record (POR) area of responsibility Ensure systems are scanned, patched, and compliant with DoD policy Troubleshoot Windows and RHEL security policies Support with configurations including CloudWatch logs, registering systems, reporting and manage findings Assess systems to determine applicable IA controls based on design, architecture, and data Attend risk management and system meetings to provide status updates and take action items Other duties as required Minimum Qualifications Must have DOD Secret level clearance to start (T3 background investigation) Certification Requirement: Directive 8570.1/8140 - IAM-1: Security+ Allowable substitutes for Security+ include CAP, CND, Cloud+, GSLC, HCISPP Bachelor's degree with a minimum of 5 years of relevant experience. (4 years of additional experience in lieu of Bachelor's degree is acceptable) Experience performing risk assessments and audits. Knowledge of the overall Risk Management Framework and NIST compliance as a security professional. Familiarity with DoD Cyber Security policies and requirements Experience presenting to clients or management to present technical and non-technical information to allow key personnel to make informed decisions. Familiarity with information security documents, government orders, notices, and guidelines. Experience documenting and maintaining systems running in AWS GovCloud (DoD preferred) Ability to work independently to create and update Security Plans, Contingency Plans, and other security documents Desired Qualifications Bachelor's degree in Engineering, IT, Computer Science, or related field or equivalent Experience using DoD approved tools (ACAS, SCAP-compliant scanners, eMASS, etc.). Experience successfully advising stakeholders through the ATO process. Experience supporting DoD (Navy preferred) enterprise application in the AWS GovCloud (up to IL 6) in a security capacity CISSP or equivalent certification AWS Certified Security certification About Sev1Tech LLC Welcome to Sev1Tech! Founded in 2010, we are proud to be a leading provider of IT modernization, engineering, and program management solutions. Our commitment is to deliver exceptional program and IT support services that empower critical missions for both Federal and Commercial clients. At Sev1Tech, our mission is clear: Build better companies. Enable better government. Protect our nation. Build better humans across the country. We believe that through innovation and dedication, we can make a significant impact on the communities we serve. Join the Sev1Tech family, where your potential for greatness is limitless! Here, you will not only achieve remarkable accomplishments but also enjoy a fulfilling and rewarding career progression. We invite you to explore opportunities with us and become part of a team that values your contributions and growth. Ready to take the next step? Apply directly through our website: Sev1Tech Careers and use the hashtag #join Sev1Tech to connect with us on social media! For any additional questions or to submit referrals, feel free to reach out to ***********************.

Tyto Athene is searching for an experienced System Engineer, Physical Security to support one of our DoD programs. This individual will be required to operate in a diverse security environment. Responsibilities: Design, install, test and support of DoD physical security systems including, but not limited to, access control, closed-circuit television and intrusion detection. Three (3) years' experience working with and validating engineering drawings in accordance with DoD engineering drawings practices. Ability to troubleshoot LENEL manufactured security system and access control system equipment and software. Provide security engineering support including review and response to technical specifications, scope of work, product selection, surveys with customer interview, design, technical writing and implementation of Electronic Security Systems. Evaluate new COTS products, identifies form fit function (FFF) replacements for end of life (EOL) equipment, reviews maintenance trouble tickets and research solutions. Maintains As-Builts to include inside and outside plant, fiber optic infrastructure, CCTV, IDS, ACS, head end and other related Electronic Security Systems. Develop Installation Design Packages (IDP) that are SIPH compliant for Electronic Security Systems such as PACS, IDS/PIDS, VMS, and other related low voltage systems for highly sensitive areas such as SCIF. Qualifications Required: Ability to obtain a CI polygraph Bachelor's degree in electrical or mechanical engineering and a minimum seven (7) years' experience; OR a minimum of ten (10) years' experience if candidate does not have a degree CompTIA Security+ certified LENEL Certified Expert (LCE) Clearance: Active TS/SCI clearance is required. Candidates must have this clearance in order to be considered. About Tyto Athene Compensation: Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically between $130,000-$140,000. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range. Benefits: Highlights of our benefits include Health/Dental/Vision, 401(k) match, Paid Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and parental leave. Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains-Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT-empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide. At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto? Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.