ICS is seeking a Technical Writer to join the DOJ CRM program.

• Work Site: DOJ; 1400 New York Ave NW; 7^th Floor; Washington DC
• Location: Hybrid – 2 Days Onsite 3 Days Offsite
• Clearance: Must be a US Citizen Public Trust Level- 4
• Education: BS a MUST (3- 5 Years of Experience)

The Technical Writer will support a project management organization managing a portfolio of IT projects for the federal government.

Maintain organization of the knowledgebase, ensuring information is documented using consistent design and language. The writer will use and update existing methods to provide documentation, status reports, ad-hoc reports, meeting minutes, deliverables, and briefings.

The Candidate will work with internal and external teams to write and produce easy-to-understand, high-quality documentation that contributes to the acceptance of deliverables and products developed across the program.

Responsibilities:

Researching topics, writing documents and editing their work for publication. Must work with technical teams to obtain an in-depth understanding of documentation requirements and the products to be produced. Develop and write easy-to-understand job aids and tutorials to help guide end-users on the processes performed across varying program functional areas. Write documentation that is appropriate for its intended audience and manage all work products related to project performance and program requirements. Develop processes and manage documentation related to project performance, program requirements and meeting minutes. Identify which documentation options are appropriate for each project type. Maintain large document repositories. Coordinate and prioritize concurrent activities within deadline-driven climate.

Skills:

Ability to quickly grasp complex technical concepts and make them easily understandable in text and pictures. Produce high-quality documentation and meeting minutes appropriate for its intended audience. Ability to analyze existing content for reuse and leveraging of content to include in documentation of like deliverables. Excellent written skills in English, strong communication skills and the ability to interact effectively with User and IT community. Strong communication skills and the ability to interact effectively with User and IT community.

Excellent document management skills, able to manage input from a variety of team members while standardizing the language and format while maintaining positive version control. Maintain comments tracking matrices on all documents. Excellent analytical skills including the ability to think through all aspects of document production and generate schedules and assignments for writers. Ability to create and update content based on templates and existing documents.  Relevant experience should include producing management briefings, project status reports and meeting minutes. Expert with Microsoft Office; especially Word, Outlook and PowerPoint. Highly proficient in using Jira, Confluence, MS Teams and MS SharePoint.

• US Citizenship a Must
• BS/BA degree and 3 to 5 years’ experience
• 3 to 5 years of Technical Writing experience
• Ability to accurately document processes in English with minimal errors
• Understand and be well-versed in active language, subject-verb agreement, punctuation and other foundational grammar rules
• Must be able to work independently, achieve productivity goals, and manage one’s time
• Attention to detail, striving for error-free work
• Must be able to work on site when needed
• Understanding of ITIL
• Help desk/service center technical writing of government standard operating procedure

ICS is seeking a Help Desk Specialist to join the DOJ CRM program . This individual will configure, install, and support desktop computers, laptop computers, handheld devices, printers, monitors, portable data storage devices, and other general peripherals in support of Department of Justice staff.

• Work Site: DOJ; 1400 New York Ave NW; 7^th Floor; Washington DC
• Location: 100% Onsite
• Clearance: Public Trust Level- 4  Must be a US Citizen (Active Secret or Top Secret preferred)
• Education: BS a MUST (2- 4 Years of Experience)

The successful candidate will be someone who has the technical skills outlined below and is able to:

• Work well under pressure and to meet deadlines as needed
• Adapt to various types of situations, clients, and tools
• Maintain a professional attitude and appearance, while always providing excellent customer service, to include maintaining a good work ethic and assisting other analysts when needed.

Responsibilities: 

Responds to Service desk walk up requests, telephone calls, and email from personnel by creating problem tickets and rendering technical support

• Troubleshoot, diagnose, and repair computers, laptops, and other peripherals.
• Experience with techniques, methods of troubleshooting end-user problems including set-up and support of software and hardware
• Configure IT devices for secure operation.
• Connect and configure IT devices to use computer networks.
• Diagnose hardware and software failures, communicate remediation plans to users, and provide status updates.
• Provide software support for users.
• Support desktop maintenance and security maintenance.
• Provide virtual assistance sessions.
• Documents user’s problems through the use of Remedy including opening, updating status, and closing problem tickets.
• Develop end-user documentation and instructions.
• Contribute knowledge and updated information to maintain the Desktop Support SOPs and Training manuals for support.
• Support disaster recovery.
• Knowledge of ITIL/ITSM concepts (Note this is an ITIL environment)
• Use an IT ticket system, receive and track trouble tickets, assign them for action, ensure that tickets are resolved and closed out.
• Track and update the movement of all IT assets.
• Stay in regular communication throughout the day with other tiers of support and Management staff.
• Participate in troubleshooting of issues and root cause identification.
• Familiarity with ServiceNow a Plus, but not required

Requirements

• 2-4 years relevant experience with Bachelors in related field;
• Client Requirements: Must have three or more years of experience servicing customers in a Desktop Support role.
• Experience with Windows hardware and software.
• Must be able to obtain a Public Trust Level 4 security clearance.

• Work Site: DOJ; 1400 New York Ave NW; 7th Floor; Washington DC
• Location: Hybrid – 2 Days Onsite 3 Days Offsite
• Clearance: Must be a US Citizen & Must be able to attain Public Trust Level- 4 (Active Secret or Top Secret desired NOT required)

• Manage and administer enterprise production SQL Servers in a large scale high performance environment to ensure high availability of database services
• Installing, configuring, and administering an Active/Passive or Active/Active clustered SQL Server instances and stand-alone instances
• Provide general production support, including troubleshooting, job completion, performance tuning and monitoring, etc.
• Monitor database server performance and perform database tuning as required Develops a methodology for the ongoing assessment of database performance and the identification of problem area
• Develops a security scheme for the database environment, as well as assisting in disaster recovery to secondary site
• Develop and maintain the appropriate documentation of the existing system functions, integration, and business logic.
• Provide technical knowledge and database engineering expertise to develop procedures, processes and routines for database backup and database management which take optimum advantage of hardware and software system capabilities
• Perform database backups, restores, and integrity checks
• Work with IT security running scans, resolving vulnerabilities, documenting waivers, and completing C&A requirements
• Develop custom reports as necessary
• Follow Change Management procedures to implement database configuration changes
• Proactively monitor and respond to database alerts

• Database engineering experience in designing, installing, configuring, and administering a highly available and scalable SQL Server environment utilizing HA/DR features, such as Active/Passive or Active/Active failover clustering, AlwaysOn Availability Groups, and Log Shipping.
• Experience working with SQL Server 2012 and above on virtual and physical servers
• Experience with SQL and T-SQL. Creating tables, indexes, stored procedures, views, triggers, and functions.
• Experience with traditional database operations including transaction processing and issues of database integrity, scalability, database backup, recovery, and standardization in a large-scale environment
• Experience in debugging performance, load, and concurrent use issues in a distributed, multitier architecture including the development or integration of application services and/or shared components to address needs like user authentication, security, version control, authorization, etc.
• Knowledge of database design concepts and understanding of SQL Server internals
• Experience in design, integration and test of application interfaces to system databases
• Self-motivated and directed, with keen attention to detail
• Able to prioritize and execute tasks in a high-pressure environment
• Experience working in a team-oriented, collaborative environment
• Good written and oral communication skills

• Experience working with DISA STIGs
• Experience working with PowerShell or developing custom scripts a plus
• Experience with SQL Server Reporting Services. Installing and configuring reporting services and creating custom reports.
• Experience with working with SSIS and develop custom packages to automate tasks

• B.S. in Information Systems or Computer Sciences
• 4-6 years of experience in database engineering in large Data Center environment
• SQL Server Certification a plus

Clearance Level: Active Top Secret a MUST

Location: Quantico, VA Hybrid (2 Days onsite -3 Days Offsite)

The Cybersecurity Engineer – Splunk Administrator – Mid Level will be responsible for administering, maintaining, and engineering the multi-enclave enterprise On-Premises and Splunk Cloud environment for the DCSA.

Requirements:

• Five (3-5) years of experience with multi-enclave enterprise On-Premises Splunk/Splunk Cloud Engineering
• Ability to provide support to Incident Responders and other SOC Members for developing queries, alerts, dashboards, etc. via Splunk.
• Desire to coordinate efforts with different technology groups to implement log ingestion to On-Premises Splunk and/or Splunk Cloud
• Experience supporting Security Operations Center objectives
• Proactively work with appropriate teams to implement and test new detection rules and procedures
• Experience providing advanced analysis and correlation across cyber events, logs, and artifacts
• Participating in red/blue testing to confirm/tune detection and alerting mechanisms via Splunk
• Experience in creating and maintaining SOP’s
• Knowledge of DISA Security Technical Information Guides, NIST SP 800-61, CJCSM 6510.01 B, United States Cyber Command guidelines, and other applicable DoD Cybersecurity and Computer Network Defense policies
• Experience developing and reporting metrics, preferably in a near-real time dashboard or common operating picture
• Develop, maintain, and provide a daily and weekly brief that captures all the cyber events including metrics and trends Support SOC personnel with Incident Response, Threat Hunting, Trends Analysis, and other Cybersecurity objectives
• Liaise with different stakeholders to coordinate ingestion of logs to Splunk

Education:

• Bachelor’s Degree in Information Technology, Information Systems Management, or Cybersecurity (Preferred)

Certification(s):

• IAT Level II REQUIRED
• Any level of Splunk certification ( User, Administrator Required)

Clearance Level:   Active Top Secret a MUST 

Location: Quantico, VA Hybrid 1-2 Days onsite

DCSA requires Cloud Security Analyst support in order to maintain IT infrastructure, applications, and any new development projects with ensuring the security efficacy of networks. As such, technical analysis, research, evaluation, and technical guidelines shall be performed in order to accomplish the needed support. The workload for ISSE will vary depending on the number of active development projects, the RMF governance tier level, and other technical evaluations required by DCSA.

Requirements:

• At least 3 Years- Cloud security experience
• Knowledge of Federal/DoD IT and Cloud security policies, IT configuration tools, Network Security, and other applicable Cybersecurity Policies
• Demonstrated experience with research and analysis of Commercial-Off-The-Shelf (COTS) and Government-Off-The-Shelf (GOTS) and IA-enabled products as part of the security architecture and ensure products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) compliant and validated via the NIAP Common Criteria Evaluation and Validation Scheme or NIST Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMVP).
• Sufficient experience designing IT system architecture and solutions for a mid to large enterprise with both local and remote connection requirements
• Ability to assess current infrastructure and architecture and make recommendations for improvement, expansions, and device/software lifecycle management
• Be able to maintain TS/SCI clearance and access to required commercial and/or DoD systems including NIPRNet, SIPRNet, and JWICS
• Liaise with internal and external partners at all levels, government and private sector, in order to benefit the organization

Education:

• Associates or Bachelor’s Degree, in Cybersecurity, and/or Information Systems Management or equivalent experience

Certification(s):

• IASAE I or IAM II or IAT II
• Cloud certifications preferred

Location: Quantico 60% Remote

Clearance Level: Secret or Top Secret security clearance 

The Cybersecurity Analyst will provide support for a program, an organization, system, or an enclave; provides support for proposing, coordinating, implementing, and enforcing information systems or enclave cybersecurity policies, standards, and methodologies; maintains operational security posture for an information system, program, or enclave to ensure cybersecurity standards, and procedures are established and followed; performs day-to-day security operations of the system or enclave; perform IT security control validations; provide configuration management (CM) for information system security software, hardware, and firmware; manage changes to system and assess the security impact of those changes; prepare and review documentation to include Systems Security Plans (SSPs) and Security Assessment & Authorization  (SA&A) packages in accordance with DoD Risk Management Framework (RMF) procedures.

Duties:

• Interface with Project/Program Managers and Information System Security Manager on Major Application / General Enclave issues and updates.
• Track and report on Plan of Action and Milestone (POA&M) items; RMF Status, A&A ATOs, and Continuous Monitoring actions.
• Prepare briefs and A&A documents for approval.
• Perform ISSO Type duties as defined in DoD 8510 & 8500.
• Provide risk mitigation strategies.
• Perform Quality checks on POA&Ms, assessments, and documentation.
• Conduct informal risk assessments to support policy development.
• Review existing documentation bi-annually for accuracy and relevance to current DoD and DSS mandates.
• Assist with Mission Assurance tasks and information to include policy and plan development related to IT
• Assist with research on cybersecurity items of interest.
• Perform other duties as related to risk management, communication, and assessments.

Minimum Qualifications:

• Associates or Bachelor’s Degree in Information Technology, Information Systems Management, or Cyber Security.
• At least 3 years of hands-on technical Cyber Security Experience and knowledge with DISA Security Technical Information Guides, DoD A&A Process, NIST SP 800-53, IA Technical Framework, and applicable DoD Cyber Security / Risk Management policies.
• At least one (1) year of the knowledge of current security tools, hardware/software security implementation, communication protocols, and Microsoft Office suite.
• Must meet DoD 8570-M/8140-M IAM Level I

Location: Quantico, VA 100% Remote (Maybe required to come onsite once a month) 

Job Description:

ICS is seeking Cyber Communications Specialist – New Award- DCSA in order to maintain and support current and future organizational operations. Various technical documents, procedures, and policies are to be developed in order to provide support.

Permanent Position with Benefits – 5 Year Award

Clearance Level: Active Secret a MUST

Tasks may include:

• Work with various stakeholders to gather, track, communication and monitor contract deliverables and turn them into useful reports for Leadership.
• Creates effective process workflows which makes gathering requirements from Stakeholders simple.
• Provide professional editorial and publishing level subject matter expertise for the release of publications, reports, and communications to the Department.
• Early engagement and assessment of reporting content, developmental and substantive editing for structure, standardization, line editing for grammar, punctuation, syntax, spelling, and proofreading for adherence to DoD style publications.
• Experience utilizing tasking tracking tools (CATMS, etc.) to coordinate executive correspondence.
• All other duty areas assigned under contract requirements.
• SharePoint Workflow and site administration is not required, but highly desired.
• Plans and schedules cyber security project activities to include monitoring and reporting various project progress.
• Provide support in creating, writing, and maintaining missing or outdated policies, procedures, communications and processes as needed.
• Analyze, recommend, and execute changes to current Policies/Procedures and Processes.
• Provide support in creating, writing, and maintaining missing or outdated Policies/Procedures and Processes.
• Provide document development support to OCIO focused on both required day-to-day and longer-term strategic operations.
• Develop and maintain required tools and/or templates, communications, briefings, workshops and other efforts required to successfully initiate implementation of OCIO initiatives.

Requirements:

• Associates or Bachelor’s Degree in Information Technology or Information Systems Management preferred
• At least 5-7 years of experience
• Proficient with Microsoft Office applications (Excel, Word, Project, etc.)
• Knowledge of standard DoD policy practices and writing style, and industry best practices.

Location: Quantico, VA 80% Remote

Clearance Level: Secret/Top Secret

Customer needs technical publications support in order to maintain and support current and future organizational operations.  Various technical documents, procedures, and policies are to be developed in order to provide support. Tasks may include:

• Analyze, recommend, and execute changes to current Policies/Procedures and Processes.
• Provide support in creating, writing, and maintaining missing or outdated Policies/Procedures and Processes.
• Provide document development support to OCIO focused on both required day-to-day and longer-term strategic operations.
• Develop and maintain required tools and/or templates, communications, briefings, workshops and other efforts required to successfully initiate implementation of OCIO initiatives.
• Document and update policies, business processes, analyses, and support activities, as directed.
• Review and approve all work done and documents produced by Contractors for Technical Publications Support.
• Support the PM in the creation and submission of all GiG (DoDIN) Waiver A&A documentation specified in applicable Government A&A policies and DISA/DSAWG GiG (DoDIN ) Waiver requirements.
• Manage, maintain and update SharePoint portal, coordinate import/export and create/configure objects (libraries, lists, and tasks).
• Develop and provide for Government all other waiver documentation specified in applicable Government.
• Monitor IT system authorization termination dates, and publication and assessment expiration dates for required updates.
• Develop cyber awareness correspondence and artifacts such as digital posters, banners, memorandums.
• Maintain schedule of events
• Take meeting minutes.

Requirements:

• Associates or Bachelor’s Degree in Information Technology or Information Systems Management preferred
• At least 3 years of experience in cyber IT technical writing/scheduling
• Proficient with Microsoft Office applications (Excel, Word, Project, etc.)
• Knowledge of standard DoD policy practices and writing style, and industry best practices.

Clearance Level: Active Top Secret a MUST

Location: Quantico, VA Hybrid – 2 Days onsite  

DCSA requires ISSE support in order to maintain IT infrastructure, applications, and any new development projects with ensuring the security efficacy of networks. As such, technical analysis, research, evaluation, and technical guidelines shall be performed in order to accomplish the needed support. The workload for ISSE will vary depending on the number of active development projects, the RMF governance tier level, and other technical evaluations required by DCSA.

Requirements: 

• Three (3) Years- Cybersecurity experience
• Knowledge of DoD, NIST, Cloud, DISA, and other applicable Cybersecurity Policies, Procedures, and best practices
• Two (2)-Three (3) years hands on experience with eMASS or other similar compliance system, entering packages, managing POA&Ms, running reports, etc.
• Must have experience as an RMF/A&A team lead or significant contributor, preferred if a technical advisor in a certain system or technology, i.e., networking, AWS cloud, servers, etc.
• Experience/Education to serve as a senior engineer level technical advisor to the RMF process.
• Demonstrated experience with research and analysis of Commercial-Off-The-Shelf (COTS) and Government-Off-The-Shelf (GOTS) and IA-enabled products as part of the security architecture and ensure products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) compliant and validated via the NIAP Common Criteria Evaluation and Validation Scheme or NIST Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMVP).
• Sufficient experience designing IT system architecture and solutions for a mid to large enterprise with both local and remote connection requirements.
• Ability to assess current infrastructure and architecture and make recommendations for improvement, expansions, and device/software lifecycle management.
• Be able to maintain TS/SCI clearance and access to required commercial and/or DoD systems including NIPRNet, SIPRNet, and JWICS
• Liaise with internal and external partners at all levels, government and private sector, in order to benefit the organization.

Education:

• Associates or Bachelor’s degree, in Cybersecurity, and/or Information Systems Management or equivalent experience

Certification(s):    

• IASAE I or IAM II or IAT II

Must be US Citizen/Active Interim Top Secret or Active Top Secret is required

Location: Quantico, VA – 60% Remote

Overall Job Description: 

DCSA requires A&A Validator who will manage customer-required Risk Management Framework (RMF) efforts for DCSA customers. The Validator will be responsible to work collaboratively with Information Technology (IT) Engineers and System Administrators to conduct Cyber Security (CS) analysis, mitigation, remediation, and monitoring to ensure compliance with applicable DoD and DCSA policies, procedures, and regulations. The validator will assess and validate that the system has implemented the approved security control baseline.

You will work with Cyber Assurance (CA) team which conducts Risk Management Framework efforts supporting Enterprise level tasks (Tier II) in the roles of Cyber Analyst and Cyber Validators. In addition, the CA team conducts A&A validation and security testing devices before allowing the hardware to be added to the network. The CA team may be required to travel at least 10 times a year for annual security assessments and continuous monitoring efforts. Cybersecurity support includes systems which comprise the ESS, the Agency administrative networks- (Unclassified but sensitive Data Network (UDN), Classified Data Network (CDN), and JWICS enclaves), GIG waivered networks and all standalone systems (non-networked computers).

Requirements:

• At least 3 Years- hands-on technical Cybersecurity validation experience
• Supporting A&A validation, RMF assurance, POA&Ms, and eMASS submissions
• Develop, update, and provide for Government review, all DoD and other federal agency-specific documentation specified in Government A&A Framework and DoDI 8510.01, as applicable.
• Maintain all DCSA & PM managed system records and documents supporting compliance with federal laws, directives, policies and procedures, and provide at all times complete access to the records. Store all A&A related documentation within a government A&A Repository.
• Conduct A&A related security test and evaluations using government mandated tools and test procedures.
• Develop or contribute to A&A related POA&Ms and Risk Assessment Reports as directed by applicable policy and guidance.
• Review and analyze data found in eMASS (or similar A&A Repository /continuous monitoring tool).
• Generate reports identifying noncompliant systems.
• Knowledge of Risk Management Framework (RMF), STIGs and eMASS or similar (e.g., Xacta or CSAM)
• Knowledge of DISA Security Technical Information Guides, NIST SP 800-53, and other applicable DoD Cybersecurity policies
• Possess strong writing skills; experience preparing enterprise-wide SOPs, reports for high level officials
• Experience developing cybersecurity documentation, Plan of Actions & Milestones (POAM), enterprise mission assurance support service (eMASS) submissions, and system security engineering efforts

Certification(s):

8570 IAM Level I (e.g., CAP, CND, Cloud+, GSLC, Security+, HCISPP)

 OR

8570 IAM Level II (e.g., CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP)

DCSA requires Cyber Defense Incident Responder Log reports, forensics investigations, incident reports, trend reports on classified data spills. Log reports are conducted daily, covering the Security Information and Event Manager (SEIM, Host Based Security System (HBSS), and vulnerability scanners. Log reports are produced daily covering 30-plus activities that are used to depict current network security and any anomalous activity. Review logs to include but not limited to servers, firewalls, web proxy, and infrastructure devices.

Location: Quantico, VA Now 60%

Must possess an active Top Secret security clearance with the ability to obtain and read on SCI

Job Responsibilities:

• Identify violations of internet access by reviewing web content filtering logs in accordance with DCSA policy, DoD policy, and CND SOP
• Identify and report incidents that involve email to include but not limited to phishing, malware, and spillage
• Develop and maintain SOPs for security monitoring
• Provide daily reports on key indicators of network security as provided by DSS net defender SOP
• Generate reports showing specific types of incidents
• Create SOPs and guides for response to specific categories and types of incidents.
• Perform trend analysis of incidents to identify potential problem areas
• Make recommendations for systemic, policy or procedural changes in order to mitigate specific risks
• Execute Incident Response Plan as required
• Support security incident reporting on all network computer security incidents and spillages
• Analyze Endpoint Security Solutions (ESS) log data to determine potential threats
• Analyze ESS log data to determine rogue systems
• Analyze ESS logs to determine infected systems
• Analyze ESS logs to identify systems that had unauthorized USBs connected to them
• Analyze ESS logs to determine unauthorized system changes
• Develop and maintain SOP for ESS Continuous Monitoring
• Develop and maintain a forensic SOP for conducting forensic investigations in accordance with DoD and DCSA directives and legal requirements
• Conduct Forensic investigations with EnCase Forensic (or similar) tool using all legal and DCSA Control Steps
• Acquire and preserve a forensic image of data from system hard disk drives, and volatile memory to include but not limited to documents, images, email, webmail, Internet artifacts, web history and cache, HTML page reconstruction, chat sessions, compressed files, backup files, encrypted files, RAIDs, system files, executables, scripts, on workstations, laptops, servers, VDIs, external mass storage, and smartphones and tablets
• Create a forensic exact binary duplicate of the original system or media utilizing EnCase Forensic (or similar) tool
• Daily, review or user activity discovered by CND network monitoring tools
• Analyze user activity data from CND tools to determine which indicators or triggers can be applied
• Determine thresholds for user activity that would require referral to DSS Insider Threat Working Group
• Analyze user activity data from CND tools to determine if thresholds for user activity have been met for that would require further investigation
• Make recommendations for systemic, policy or procedural changes in order to mitigate vulnerabilities found

Requirements:

• Must meet DoD 8570.01-M IAT Level II Certification and be able to perform as an CSSP-IR.
• Associate’s Degree in Information Technology, Information Systems Management, Cyber Security, or equivalent experience.
• At least 3 years hands-on technical cybersecurity experience and knowledge with Computer Network Defense concepts, DISA Security Technical Implementation Guides, DoD A&A Process, NIST SP 800-53, NIST SP 800-61, CJCSM 6510.01 B, United States Cyber Command guidelines, and other applicable DoD cybersecurity and Computer Network Defense policies.

Certifications (Preferred):

Certified CSSP-IR Level to include one of the following certifications: CEH, CFR, CCNA Cyber Ops, CCNA Security, CHFI, CySA+, GCFA, GCIH, SCYBER, Pen+

Tasks include IDS/firewall placement and configuration support and network security monitoring: Responsible for traffic analysis, vulnerability scanning, Incident Response, wireless scanning, Host Based Security System (HBSS), Information Assurance Vulnerability Management program, Network Access control, insider threat support, web content filtering, data at rest and various cyber security application/tools installed on servers and workstations, may include maintenance and upkeep of the server or workstation.

Clearance Level: Active Top Secret a MUST

Location: Quantico, VA 50% Remote 

• Analyze impact of firewall configurations.
• Review logs to include but not limited to servers, firewalls, web proxy, and infrastructure devices.
• Identify violations of internet access by reviewing web content filtering logs in accordance with DCSA policy, DoD policy, and CND SOPs.
• Identify and report incidents that involve email to include but not limited to phishing, malware, and spillage.
• Develop and maintain SOPs for security monitoring.
• Provide daily reports on key indicators of network security as provided by DCSA net defender SOP.
• Generate reports showing specific types of incidents.
• Make recommendations for systemic, policy or procedural changes in order to mitigate specific risks.
• Support security incident reporting on all network computer security incidents and spillages.
• Analyze Endpoint Security Solutions (ESS) log data to determine potential threats.
• Analyze ESS log data to determine rogue systems.
• Analyze ESS logs to determine infected systems.
• Analyze ESS logs to identify systems that had unauthorized USBs connected to them.
• Analyze ESS logs to determine unauthorized system changes.
• Develop and maintain SOP for ESS Continuous Monitoring.
• Daily, review or user activity discovered by CND network monitoring tools.
• Develop lists of indicators and triggers of insider threat Activity.
• Develop SOPs guides outlining the thresholds for referrals to DSS insider threat Working Group.
• Make recommendations for systemic, policy or procedural changes in order to mitigate vulnerabilities found.
• Must meet DoD 8570.01-M IAT Level II and be able to perform as an CSSP Analyst.
• Associates Degree in Information Technology, Information Systems Management, Cyber Security, or equivalent experience.
• At least 3 years hands-on technical cybersecurity experience and knowledge of Computer Network Defense concepts, DISA Security Technical Information Implementation Guides, DoD A&A Process, NIST SP 800-53, NIST SP 800-61, CJCSM 6510.01 B, United States Cyber Command guidelines, and other applicable DoD Cyber Security and Computer Network Defense policies.

Cyber Defense Incident Responder/Threat Hunt- DCSA  also perform Threat Hunt operations placement and configuration support and network security monitoring: Responsible for traffic analysis, vulnerability scanning, Incident Response, wireless scanning, Host Based Security System (HBSS), Information Assurance Vulnerability Management program, Network Access control, insider threat support, web content filtering, data at rest and various cyber security application/tools installed on servers and workstations, may include maintenance and upkeep of the server or workstation.

Active  Top Secret is a MUST 

Must meet DoD 8570.01-M IAT Level II

Location: –  Quantico 50% Remote

• Analyze impact of firewall configurations and perform Threat Hunt operations.
• Review logs to include but not limited to servers, firewalls, web proxy, and infrastructure devices.
• Identify violations of internet access by reviewing web content filtering logs in accordance with DCSA policy, DoD policy, and CND SOPs.
• Identify and report incidents that involve email to include but not limited to phishing, malware, and spillage.
• Develop and maintain SOPs for security monitoring.
• Provide daily reports on key indicators of network security as provided by DCSA net defender SOP.
• Generate reports showing specific types of incidents.
• Make recommendations for systemic, policy or procedural changes in order to mitigate specific risks.
• Support security incident reporting on all network computer security incidents and spillages.
• Analyze Endpoint Security Solutions (ESS) log data to determine potential threats.
• Analyze ESS log data to determine rogue systems.
• Analyze ESS logs to determine infected systems.
• Analyze ESS logs to identify systems that had unauthorized USBs connected to them.
• Analyze ESS logs to determine unauthorized system changes.
• Develop and maintain SOP for ESS Continuous Monitoring.
• Daily, review or user activity discovered by CND network monitoring tools.
• Develop lists of indicators and triggers of insider threat Activity.
• Develop SOPs guides outlining the thresholds for referrals to DSS insider threat Working Group.
• Make recommendations for systemic, policy or procedural changes in order to mitigate vulnerabilities found.
• Must meet DoD 8570.01-M IAT Level II and be able to perform as an CSSP Analyst.
• Associates  Degree in Information Technology, Information Systems Management, Cyber Security, or equivalent experience.
• At least 3 years hands-on technical cybersecurity experience and knowledge of Computer Network Defense concepts, DISA Security Technical Information Implementation Guides, DoD A&A Process, NIST SP 800-53, NIST SP 800-61, CJCSM 6510.01 B, United States Cyber Command guidelines, and other applicable DoD Cyber Security and Computer Network Defense policies.

LOCATION:  Remote/ DCSA Quantico

JOB DESCRIPTION:  

• This position will provide cybersecurity expertise to install, operate and maintain cybersecurity monitoring tools for the Defense Counterintelligence and Security Agency.

EDUCATION REQUIREMENTS:

• Bachelor’s degree in Computer Science or similar Information Technology field
• In lieu of degree, four (4) years of experience can be substituted for degree within the field

BASIC QUALIFICATIONS:

• Three (3) years of experience with enterprise Cybersecurity tool installation
• Five (5) years of experience gathering, analyzing, and documenting cyber threat intelligence
• Experience with FireEye Tools
• Experience with meeting timelines, budget, Risk Management Framework (RMF) requirements to be submitted for Authority to Operate (ATO)
• Experience providing cyber threat monitoring and defense capabilities
• Experience with Plan of Action and Milestones (POAMs) (and Enterprise Mission Assurance Support Service (eMASS), preferred)
• Enhanced situational awareness of current threat landscape
• Experience informing counterintelligence strategies and response actions
• Experience supporting analysis of threat intelligence statistics, intelligence collection methods, newly discovered threat vectors, and mitigation efforts
• Experience providing advanced analysis and correlation across cyber events, logs and artifacts
• Experience providing access to raw cyber intelligence holdings
• Ability to enhance and augment intel queries and support requests

Certification(s):

• Minimum of Information Assurance Technical (IAT) level II
• IAT Level III desired

ICS Nett Inc is a rapidly growing consulting firm in the DC area focused on helping federal contracting teams improve their processes from the capture stage to proposal submission by providing consulting at all stages of the business development lifecycle and outsourcing personnel for specific opportunities

Direct Hire Full time with Benefits 

Location: 100% Remote – McLean, VA

We’re now hiring a Proposal Writer to join our team, someone who is rigorous in their work and effective in their communication, collaborative by nature and, significantly, able to render complicated language in simple and effective ways. If this sounds like you,

ICS Nett Inc is a great place to move your career forward.

Our Business Development, Capture, and Proposals Unit’s mission is to support our clients by managing and otherwise bolstering the BD, capture, and proposal development efforts for their proposals. As a proposal writer, you will largely be focused on information technology pursuits (Federal, State, and Local) that may vary in size from small to large and may require a variety of solutions. You will be an integral part of Requests for Proposal (RFP) Analysis, Kick-Off Meetings, Status Calls, Proposal Development, Proposal Writing, Color

Reviews, Proposal Production, and Knowledge Management, among other essential functions.

Our team is looking for an experienced highly skilled Proposal Writer to assist as required in the activities described below:

Essential Functions:

• Research, collect data, organize information, and write text in response to government solicitations, including but not limited to technical proposal sections, past performance narratives, resumes, RFI responses, white papers, or other proposal texts as assigned
• Interview technical resources and translate their technical knowledge into easily readable content
• Ensure submissions are accurate, complete, and compliant with RFP requirements and editorial specifications, as well as corporate quality and branding standards
• Collaborate with the BD and Proposals team, Proposal Coordinators, Capture Managers, Business Development Managers
• Authors, Subject Matter Experts, Artists, Program Managers, Support Leads, etc. in producing high quality content specific to a given solicitation
• Participate in proposal meetings and reviews
• Define section requirements, adhering to approved proposal outline
• Work with Proposal Coordinators and/or Graphic Designers to plan and develop graphic concepts
• Develop resumes, cameos and/or staffing matrices per RFP and Capture Plan requirements
• Prepare documentation for formal reviews
• Maintain historical files for each section and a section status log
• Notify the Book Boss of any challenges/problems that could jeopardize a section
• Evaluate and incorporate appropriate comments into a section or volume following major reviews
• Responds to direction from the Proposal Operations Manager, Proposal Manager, Book Boss and/or Review Team Leader(s)
• Prepares/delivers required text and all associated proposal deliverables according to set deadlines

Required Skills:

• Minimum 4-6 year of proposal/technical writing experience
• Knowledge of RFP life cycle management and federal procurement regulations (FAR/DFARS)
• Proven ability to successfully communicate company proposal objectives and key characteristics to management and teammates in writing and in oral presentations
• Proven ability to work with/interview Subject Matter Experts to understand and write about complex technical and management approaches at 8th grade readability
• Excellent people skills – able to work with teams of varying sizes, technical abilities, and levels of authority with both internal teammates and external corporate staff
• Advanced ability to manage the RFP/RFI process and the contributing team members (not direct reports)
• Thorough, detail oriented, and organized, with excellent time management skills and ability to prioritize
• Excellent multi-tasking abilities – able to handle multiple projects simultaneously
• Knowledgeable in Microsoft Office Suite including Word, Excel, and PowerPoint

Required Education:

• Bachelors or Master’s Degree in Business, English, or Communication
• Technical or related academic field highly desired
• APMP Foundation-level certification desired

Apply Now