About us
GRAVICOM LLC is a small cybersecurity company that values people. Jobs and money come and go - taking care of people is the important part. Our goal is to take care of people and equip them in everything they need so they can accomplish the mission set before them. At GRAVICOM, you are seen and appreciated. We value you, and we value your contributions. It is OUR PRIVILEGE to work with you; and you will make this company even better!
Information System Security Specialist III
- The work will be on USMC systems
- The work is very meaningful - It will help increase our national security and keep soldiers safe.
- The environment is great - Lots of smart and interesting people are on the team. Lots of cutting-edge cool tech to work on.
- The work is in-person only, and it is located in a secure facility in Bloomington Indiana.
Position Description:
- Vulnerability scan systems and remediate vulnerabilities. Mitigate risk, make a plan to fix, and update documentation.
- Analyze and review the existing IA/cyber security documentation, implementation, and testing and provide recommendations for changes/updates.
- Provide extensive knowledge and capability in utilization of vulnerability analysis tools such as ACAS software, DISA STIGs and SCAP tools to identify vulnerabilities and adjudicate findings in POA&M.
- Utilize DISA STIGs and SCAP tools to secure systems and update risk posture.
NOTE: Even if you don't meet all the qualifications, we can train you in the areas you aren't as familiar with.
Position Responsibilities:
- Analyze environment to identify and mitigate security vulnerabilities
- Maintain and update POA&Ms to track and prioritize security measures
- Perform STIG checklists to ensure compliance with security standards
- Interface with customers to provide timely updates, guidance, and information on application security
- Collaborate with cross-functional teams to implement and enforce security best practices
- Stay abreast of the latest security trends, threats, and technologies to continuously improve security measures
Position Requirements:
- Experience as a systems administrator doing patching and system lockdowns is a huge plus. Able to understand and analyze vulnerabilities, and how to mitigate the risk to systems is a critical skill.
- Proven experience in systems security, including addressing risk and vulnerabilities.
- Strong knowledge of POA&Ms and experience in maintaining and updating them
- Familiarity with STIG checklists and the ability to perform security assessments
- Excellent communication skills with the ability to interface with customers effectively
- Knowledge of industry-standard security frameworks and best practices
- Relevant certifications such as CISSP, CSSLP, CASP, Security+, or equivalent are a plus
- MUST be a US Citizen
- Must have active Secret Clearance or the ability to obtain one (Note - We'll sponsor you for a clearance if you meet the technical requirements)
Preferred Skills:
- Experience with automated security testing tools
- Familiarity with DevSecOps practices
- Strong scripting skills
- Excellent analysis and research skills
- Self motivated personality
Education and Certification:
- Bachelor's degree in Computer Science, Information Security, or related field
- IAT level II certification with DoD 8570 (Example CompTIA Security Plus) or willingness to obtain prior to start date
Job Type: Full-time
Pay: $76,358.00 - $90,000.00 per year
Benefits:
- Dental insurance
- Flexible schedule
- Health insurance
- Paid time off
- Vision insurance
Compensation package:
Experience level:
Schedule:
- 8 hour shift
- Monday to Friday
Education:
Experience:
- Cyber or SysAdmin work doing security: 3 years (Required)
- STIGs and SCAP: 3 years (Preferred)
License/Certification:
- CompTIA Security+ (Preferred)
- U.S. Citizenship (required for security clearance) (Required)
Security clearance:
Ability to Relocate:
- Bloomington, IN: Relocate before starting work (Required)
Work Location: In person