Abacus Technology Corporation is a Federal government contractor and provider of enterprise information technology (IT) services and solutions. For nearly 40 years, we’ve developed effective partnerships with government and industry to tackle business challenges and pressures for Federal Defense, Civilian, and Intelligence customers. Abacus maintains core competencies in: IT Infrastructure Support, Network Operations and Maintenance, Communication Solutions, Systems Engineering and Integration, Cyber Security / Information Assurance, Application Development, Program Management, and Business Transformation.

Support all functional disciplines to ensure proper cyber security activities are executed. Support full integration of cyber security into all phases of acquisition, upgrade, and modification programs, including design, development, testing, fielding, operation, sustainment, and DoD Assessment and Authorization (A&A) Risk Management Framework (RMF). Oversee cyber security processes, procedures, and functions to include reviewing data and assessing compliance and cyber security posture for systems. Provide cyber security A&A support services and assist the government in preparing system cyber security documentation related to operations and A&A. Review cyber security documentation to ensure satisfaction of Security Engineering and Assessment requirements system control identification), to include reviewing implementation and validation plans. Assist with the preparation and review of Federal Information Security Management Act (FISMA) documentation. Assess system compliance and enter in Enterprise Mission Assurance Support Service (eMASS). Utilize NIST 800 series special publications in the development of new system artifacts to ensure compliance with new RMF requirements and to interpret requirements as necessary to ensure system compliance or provide operational justification when deemed necessary.

5+ years experience in cyber security or information assurance. Bachelor’s degree in a related field. Must be Security+ certified (or hold a certification in compliance with DoD 8570 IAT Level II). Must hold a certification in compliance with DoD 8570 IASAE Level II or CSSP Auditor (e.g. CASP+, CISSP, CEH, CySA+, CISA). Must have specialized experience in AS&D STIG compliance, secure software development/testing, static and dynamic code analysis, software assurance, software assessments, and application threat modeling. Experience performing software and hardware risk and vulnerability analysis, or a closely related function, such as technical assessment of software for networks, applications and systems. Experience using cybersecurity/IT audit tools such as ACAS, Micro Focus Fortify, Micro Focus Web Inspect, BURP Suite, and other software assurance tools. Must be a US citizen and hold a current Secret clearance.

Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

All your information will be kept confidential according to EEO guidelines.