Information Security Specialist-Intermediate

• Provides Information Security services in support of requirements set forth in applicable DOD/GCMC Information Assurance/Cybersecurity policies, instructions and guidance to reduce the risk of security compromise to GCMC IT systems and network. All services shall be performed in accordance with the requirements outlined below:
• Installs and maintains network and Endpoint Security Solutions (ESS) components for GCMC IT assets. This includes but not limited to management of ESS rules and requirements, monitoring of anomalies and security events, and, in coordination with the GCMC Information System Security Manager/Officer (ISSM/ISSO), taking actions necessary to prevent unauthorized events from occurring. The Contractor shall be fully trained and experienced in ESS configuration, operation and monitoring.
• Supports the GCMC Information Security System Manager/Officer (ISSM/ISSO) in the configuration and maintenance of event log feeds from computer systems and IT network and security devices to an asset security information and event management (SIEM) system. The Contractor shall support the configuration and monitoring of the SIEM for indications of unauthorized activity, identification of anomalous events, correlation of events with other system event logs, configuration of notifications, and remediation of discovered vulnerabilities in accordance with DOD/GCMC guidance.
• Perform IT asset vulnerability scanning utilizing the Assured Compliance Assessment Solution (ACAS), or similar GCMC/DOD approved tools, for Information Assurance Vulnerability Alert (IAVA) compliance, general vulnerability remediation, and validation of compliance as required, and ensure results/reports are updated in applicable GCMC/DOD systems such as, but not limited to, the Enterprise Mission Assurance Support System (eMASS). The Contractor shall be fully trained and experienced in ACAS and vulnerability management operations.
• Support implementation and documentation of GCMC security policies and procedures for computer systems and IT assets which may include but are not limited to email and web security appliances to identify, report and resolve security violations or suspected or actual breaches (actual or attempted intrusion, phishing and social engineering attempts, computer viruses, worms, Trojan horses, etc.) based on guidance from the Government.
• Supports the GCMC Alt Token initiative in accordance with established guidelines and procedures and in coordination with the Information Assurance Team lead.
• Receive direction from and provide basic level Incident Response in support of the Information Assurance team forensics capabilities.
• Provides Tier 2 support to the Help Desk for any Information Assurance tasks.

Requirements

- IAT II Security+

- McAfee ESS 201 Administrator ePO (within 90 days of commencement of service)

- McAfee ESS 301 Advanced Administrator (within 120 days of commencement of service)