Abacus Technology Corporation is a Federal government contractor and provider of enterprise information technology (IT) services and solutions.  For 40 years, we’ve developed effective partnerships with government and industry to tackle business challenges and pressures for Federal Defense, Civilian, and Intelligence customers.  Abacus maintains core competencies in: IT Infrastructure Support, Network Operations and Maintenance, Communication Solutions, Systems Engineering and Integration, Cyber Security / Information Assurance, Application Development, Program Management, and Business Transformation.

• Ensure the security of Azure cloud-based applications by performing scan and patch management, cyber security planning and policy management, cyber auditing, configuration management, Risk Management Framework (RMF) Authorization Management, and DevSecOps.
• Support the ISSM-O in the creation and maintenance of all required policies, procedures, diagrams, hardware/software listings, and all other necessary artifacts required to obtain and maintain the ATO.
• Support cyber security tasks including: scan and patch management; planning and policy management; auditing; configuration management; RMF Authorization Management; DevSecOps; incident response; vulnerability scanning; STIG compliance checking; HBSS/Endpoint Security Solution; network access control; and POA&M creation.

3+ years experience cyber security and information assurance.  Bachelor’s degree in a related field.  Must hold a DoD 8570 IAT Level III certification such as CISSP, CASP+ CE, or CISA.  Must hold a Microsoft Certified Azure Administrator Associate (AZ104) certification or higher.  Proficient with cyber security/IT tools such as ACAS, HBSS/ESS, and eMASS.  Familiar with DISA Security Technical Implementation Guides (STIGs).  Knowledge and understanding of NIST 800 series framework, including the Risk Management Framework Process.  Experience in information security, including technical assessment of IT security controls and devices for networks, applications, and systems, particularly cloud-based applications and services in Microsoft Azure.  Experience performing IT audit, IT compliance, enterprise risk management, creating/updating/implementing policy, security scanning, providing security-related technical guidance, and hardening devices.  Able to act as a subject matter expert in evaluating technical risks, understanding how changes in system configuration and/or network architecture affect a system’s security posture and risk profile, and evaluating and applying technical cybersecurity measures of IT systems and networks at the enclave level.  Experience implementing cyber security controls and countermeasures in cloud environments, specifically Microsoft Azure.  Must be a US citizen and hold a current Secret clearance.

Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

All your information will be kept confidential according to EEO guidelines.