NetCentrics Corporation
  • 18-Jan-2023 to Until Filled (EST)
  • Arlington, VA, USA
  • Negotiable
  • Salary
  • Full Time
  • TS/SCI

Open PTO policy, 11 Federal Holidays, 401 (k) +Matching + Immediate Vesting, MDV, Training Assistance, Referral Bonuses, and much more.

Title: Cyber Security Specialist (Engineer)

Location: 1235 S. Clarke St. Arlington, VA

Clearance Requirement: TS/SCI (Active)

NetCentrics is a market leader in cybersecurity, enterprise IT, and telecommunications solutions and services. We serve the DoD, DHS, Federal Civilian Agencies, and Intelligence Community. We are a diverse group of intellectually curious people living by our core values while bonded by the shared mission to secure our nation - join us!

Job Description

NetCentrics is seeking an agile, fluid & vibrant Cyber Security Specialist to support NetCentrics Customer...OMC. OMC's mission is to support the Office of Military Commissions trial efforts. Customer is driven to evolve their security stack. Highly motivated individuals that are looking to build and engineer, this is a fantastic opportunity.

Job Responsibilities and Requirements

Overall System Cyber Security

  • Perform/assist existing OMC ISSO tasks and duties.
  • Function as SME ensuring all OMC IT meet DoD instruction 8500.01 cybersecurity requirements.
  • Provide OMC information systems cyber security engineering, ensuring the availability of critical systems and networks.
  • Develop, implement, and enforce OMC information systems security policies and requirements.
  • Knowledge and adherence to Risk Management Framework (RMF), National Institute of Standards and Technology (NIST), Supply Chain Risk Management (SCRM), and DoD/JSP/OMC processes and policies.
  • Identify information systems deficiencies and provide recommendations of risk mitigation to OMC IT/AV leadership.
  • Perform Cyber Incident Management, information systems Certification and Accreditation, and development of Cyber Security SOPs for approved OMC identified cyber security policies.
  • Work with internal OMC team members (contractor and government) to identify, locate, and resolve information systems cyber threats and vulnerabilities.
  • Report and investigate OMC information systems security breaches.
  • Coordination with internal OMC team members and external OMC entities such as DISA, JSP, WHS, and Intel communities.
  • Ensure security engineering principles are applied to OMC information systems project architectures during the design, implementation, and O&M phases.
  • Develop OMC-designated security technical documents/publications such as plans, procedures, and reports.
  • Manage and maintain endpoint security solutions, such as ACAS, McAfee ENS, Microsoft Endpoint Management, etc.
  • Provide ongoing maintenance and support for endpoint security solutions, including software upgrades and patches.
  • Configure and implement security controls to prevent unauthorized access, disclosure, alteration, or destruction of sensitive information using HBSS and ACAS.
  • Utilize vulnerability management solution such as ACAS to Identify, track, and prioritize vulnerabilities on endpoints and other systems.
  • Monitor network, systems, and endpoints for security vulnerabilities; proactively work with system administrations to communicate and resolve vulnerabilities.
  • Identify, respond, investigate, and remediate incidents, providing proactive updates to Program Management.
  • Work with other teams to ensure endpoint security aligns with overall IT and information security policies and standards.
  • Stay current with endpoint security threats, trends, and technologies and recommend solutions to improve the organization's security posture.
  • Ensure that all OMC information systems meet Department of Defense Instruction 8500.01 mandated Cybersecurity requirements.
  • Provide Information System Security Officer (ISSO) support for OMC systems.
  • Facilitate information system authorization to operate (ATO) compliance and re-accreditations IAW with DOD 8510.01 and ICD503.
  • Facilitate registration and maintenance of OMC information systems in the Enterprise Mission Assurance Support Service (eMASS) system. This support includes all efforts associated with the Risk Management Framework (RMF) activities.
  • Implement and maintain anti-virus and malicious code protection for all OMC information systems using government-provided software.
  • Provide and/or facilitate the distribution and installation of security patches.
  • Provide security vulnerability scanning and reporting using government-provided applications.
  • Support scheduled OMC Command Cyber Readiness Inspections (CCRI), and security assessment visits (SAV).
  • Provide onsite incident management during normal working hours for NIPRNET, SIPRNET, JWICS, Special Access Systems, and equipment. In addition, the contractor may be required to provide surge support after normal working hours, including weekends and holidays, as approved by the COR.
  • Analyze existing security infrastructure.
  • Work with ISSO and ISSM to identify non-compliance controls in the environment. Document and provide recommendations for remediation.
  • Identify any gaps in security infrastructure. Ensure GAPs are documented in the risk registry.
  • Provide design recommendations to the environment to improve security posture.
  • Work with team to implement new security technologies.
  • Participate in all table tops to ensure accurate and effective policies, processes, and procedures. Provide recommendations when gaps are identified.
  • Work with ISSO and ISSM during change management
  • Document Security Infrastructure
  • Lead Security team to ensure systems are configured correctly and running as expected and identify improvements. When issues with the security infrastructure are identified, immediately report to the ISSO and ISSM
  • Stay up to date on latest security threats in the wild
  • Stay up to date with the latest Cyber Security Technologies
  • Participate in all change management to ensure all security aspects are taken into consideration regarding the changes

Network Access Control (NAC) Security Engineering

  • Design, Build, Configuration, Deployment of ForeScout
  • Work with Network Engineer to ensure NAC is connected to the appropriate VLANs
  • Work with Security Engineer to ensure that Dead, Isolation, and Quarantine VLANs have the correct ACLs.
  • Manage Windows, Linux, and SNMP accounts required to correctly profile devices and configure switches and firewalls.
  • Configure Device profiling policies.
  • Identify all network assets through discovery on VLANs provided by Senior Systems Administrators and Security Engineers.
  • Configure integration with switches, firewalls, and SIEM.
  • Configure Network access policies based on asset classifications, VLANs, and location.
  • Configure Compliance policies to enforce patching, OS version, installed software, and Anti-Virus signatures.
  • Assist with troubleshooting network issues.
  • Troubleshoot issues with profiling, classification, and compliance policies
  • Work with ISSO and ISSM when Rogue Devices are discovered.
  • Work with ISSO and AO when Changes are required.
  • Install patches and firmware updates when available utilizing Change Management.
  • Manage to license for ForeScout product.
  • Create SOPs, Administrative Guides, and architecture guides.
  • Monitor ForeScout system health.

Network Access Control (NAC) Security Engineering

  • Design, Build, Configuration, Deployment of SPLUNK (Enterprise Level)
  • Ensure all network devices, workstations, and server logs are correctly ingested.
  • Troubleshoot issues related to log collection.
  • Management of windows, Linux, and SNMP accounts for log collection
  • Work with System Administrators and ISSOs to ensure CMDB aligns with assets being collected by the SIEM.
  • Configure dashboards for ISSO, ISSM, System Administrators, and Senior System Administrators with information related to their job duties.
  • Configure all alerts related to NIST and STIG requirements.
  • Daily analysis of SIEM events and alerts. Escalation to ISSO, ISSM, or security, whichever is relevant to the event.
  • Manage the hardware performance of the system. Work with Senior Systems Administrators if additional resources are required.
  • Manage and monitor EPS and Asset count to ensure the application operates within licensing parameters.
  • Perform backups, restoration, updates, and upgrades to the system.
  • Work with ISSO for requested audit information.
  • Create Continuity of Operations and Disaster Recovery (DR) for the system
  • Work with ISSO when performing Change Management. Provide all required documentation to ISSO/ISSM for AO approval. Work with AO to answer any questions or provide requested information.
  • Create Administrative documentation and SOPs for the system related to operations and configurations. Update documentation during Change Management, upgrades, and updates when applicable
  • Monitor SPLUNK infrastructure health.


  • At the time of award, shall possess an active TOP SECRET w/ SCI Eligible security clearance upgrade.
  • Strong customer service orientation.
  • Proven analytical and problem-solving abilities.
  • Ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Good written, oral, and interpersonal communication skills.
  • Ability to conduct research into PC and software issues and products as required.
  • Ability to present ideas in business-friendly and user-friendly language.
  • Highly self-motivated and directed.
  • Keen attention to detail.
  • Team-oriented and skilled in working within a collaborative environment.

Education and Experience

  • Bachelor's in Engineering, Computer Science, or other related fields.
  • 5+ years of professional CYBER experience with DOD or IC
  • Prior ISSO or related experience for the DoD is required.
  • Prior endpoint security solution administration or engineering experience for the DoD required
  • Prior related (CYBER) experience with the IC (DIA Preferred)

Certification Requirements

  • 01M IAT Level II
  • One of the following:
  • CCNA Security
  • CySA+,
  • CND, or
  • Security + CE

Physical Requirements

This position requires the ability to perform the below essential functions:

  • Sitting for long periods
  • Standing for long periods
  • Ambulate throughout an office
  • Stoop, kneel, crouch, or crawl as required
  • Repeatedly lift and carry weights up to 50 pounds

This employer participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status or on the basis of disability.

Equal Opportunity Employer/Veterans/Disabled

NetCentrics Corporation
  • Apply Now

    with our quick 3 minute Application!

  • * Fields Are Required

    What is your full name?

    How can we contact you?

  • Sign Up For Job Alerts!

  • Share This Page
  • Facebook Twitter LinkedIn Email
logo About Us Contract Vehicles Contact Us Our Expertise Who We Serve Our Next 25 Culture and Careers News and Insights