Founded in 2015, Knack Works, based out of Northern Virginia, was formed to address the demand for cutting-edge development environments within the intelligence community. Knack Works is focused on providing scalable, automated solutions that enable our customers to perform their national security missions in an ever-changing environment of new technologies and evolving threats. Our flagship product, the "Knack Stack," introduces flexible and automated hybrid cloud infrastructure as a service for cloud-agnostic deployments and automation. It's designed to automate data management and security. Today, we operate independently as Knack Works, a subsidiary of Jacobs. We are fortunate to retain our identity as a small business, yet with support from a large company.If you are passionate about formulating new solutions, live for problem-solving, enjoy working with a diverse technical team, and thrive in a complex technical environment read on!Day to Day Responsibilities:
Manage security-related program milestones/deadlines to meet contract requirements
Oversee and respond to security gaps/needs with information systems)
Create and update Body of Evidence for system accreditation using Xacta, ServiceNow or similar risk management software (NIST 800-53)
Develop and enforce cyber security policies and procedures for accredited systems
Coordinate with external organizations to guide systems through the customer accreditation process to achieve Approval to Operate
Review requests for software and hardware changes to systems, and submit for customer approval where required
Work closely with system administrators to address open vulnerabilities
Manage the plan of action and milestones (POA&Ms) by working with project managers and system engineers to develop schedules and engineering actions that mitigate open items
Maintain, update an conduct routine vulnerability and compliance scans across all sponsor networks using NESSUS, Rapid7 or similar software
Configure and perform required system auidts and related continuous monitoring tasks
Review and interpret new government security policies for applicability
Perform cybersecurity activities, including change management, account management, auditing, media protection, user training, file transfers, etc
4-5 years of applicable experience
Active Top Secret security clearance with Full scope Poly
Bachelor of Science degree in Information Technology, IT Security, Network Systems Technology or related field or at least 4 years of directly related experience in lieu of degree or any equivalent combination of education, experience, training and certifications
DoD 8570 IAT II Certification (Security+, CISSP, CISM, CASP+) or ability to obtain certification within 6 weeks of starting role
Familiarity with information system security principles NIST 800-53, 800-171, NSM 8
In-depth knowledge of NIST special publications, CNSS policies and instructions
Linux experience - intermediate level
Cloud experience (AWS preferred)
Ability to review, analyze, and interpret technical procedures against customer security requirements
Strong communication skills, both written and verbal
Self-starter with the ability to work independently
Must be willing to work on-site in Northern Virginia
Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, religion, creed, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, medical condition, marital or domestic partner status, sexual orientation, gender, gender identity, gender expression and transgender status, mental disability or physical disability, genetic information, military or veteran status, citizenship, low-income status or any other status or characteristic protected by applicable law. Learn more about your rights under Federal EEO laws and supplemental language.