Title: Cybersecurity Compliance Inspector ~ VMWare/Virtual Environment

Location: Alexandria, VA; Washington, DC; Reston, VA; College Park, MD

Clearance: TS/SCI with the ability to obtain and maintain a CI polygraph

Responsibilities: The Cybersecurity Compliance Inspector is responsible for the review of virtual environments and must have superior knowledge of virtualization technologies to include vSphere, vCenter, and vSAN. Day-to-day responsibilities are to conduct virtual environment reviews, remain relevant with IC requirements and have working knowledge of IC and DISA security policies and directives. This involves coordination with multiple organizations and the reviewer staff. In supporting inspections, the reviewer will:

• Coordinate with multiple organizations and the reviewer staff
• Consolidate reports on an organization's enterprise
• Validate correct configurations
• Conduct inspection interviews
• Develop and complete inspection checklists
• Provide input to written reports on compliance and associated risks
• Coordinate with purple team and cyber threat emulation activities
• Demonstrate advanced writing skills; experienced in coordinating multiple viewpoints into a cohesive document
• Demonstrate experience with DoD STIGs and STIG Viewer tool

The reviewer will support the pre-inspection phase activities to include:

• Logistical and team coordination
• Virtual testing to determine feasibility of conducting reviews remote to the site (still within on-site facilities)
• Answering questions prior to the inspection with regards to the review
• Submitting administrative facilities and systems access forms
• Analyzing network diagrams
• Identifying appropriate IP scope of an inspection through documentation and databases

The reviewer will support the post-inspection phase activities to include:

• Responding to RFIs
• Cooperation with IV&V activities as organizations work to remediate vulnerabilities discovered during the vulnerability assessment

The reviewer will be expected to identify ways to improve the program. This includes development of program documentation, cross-functional coordination, community collaboration, and automation.

Requirements:

• Bachelor's degree in Cybersecurity, Computer Science or a related technical discipline plus ten (10) years of relevant experience; an additional four (4) years of hands-on experience may be substituted in lieu of a degree
• A strong understanding of network and storage technologies as they relate to virtualization
• The ability to create PowerCLI scripts to automate tasks such as ESXi host compliance reports and audit tracking reports
• The knowledge to create and manage VMs, install VM tools, create custom virtual hardware provisioning as per guest OS
• Exceptional attention to detail, with the ability to work independently or as a team member
• Must be willing to travel up to 10-25% (mostly local travel)
• Must possess current DoD 8570 IAT Level III certification
• Current active TS/SCI clearance, with the ability to obtain and maintain a CI polygraph

Equal Opportunity Employer/Veteran/Disabled