The Naval Surface Warfare Center Philadelphia Division (NSWCPD) is a Department of Defense entity responsible for research and development, test and evaluation, engineering and fleet support organization for the Navy's ships, submarines, military watercraft and unmanned vehicles. This requirement is for NSWCPD Code 20 Land Based Test Site Programs, which is responsible for the support of Risk Management Framework (RMF) package development of all NSWCPD Land Based Test Sites. All test site systems must receive and maintain full RMF Authority To Operate (ATO) to ensure Cyber Security and Information Assurance (IA) Hardening of all Land Based Test Site Systems. Systems in scope are both Ashore and Afloat systems within each Land Based Test SiteSupporting the information system owner to complete security assessments, achieve system authorizations, continuous monitoring, and configuration management, through e. MASS - Verifying patches and virus definitions are updated on the system using existing automated tools. Adhering to pre-defined configuration management and change management policies for authorizing software prior to its implementation on systems. Verifying mitigation and closure of open vulnerabilities following the NSWC change control process. Assessing NSWC systems in accordance with Navy, NIST, DoD, and DISA guidance. Reporting security incidents in accordance with the Command's Incident Response Plan. Ensuring systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices. FILLING THIS POSITION IS CONTINGENT UPON AWARD#LI-LL 1 Requirements Must possess an active Secret clearance at the minimum. A minimum of five (5) years of cybersecurity experience. Must currently hold a DoD 8570-compliant IAT II certification (SSCP or Security CE with appropriate CE/ OS certificate), and IAM II certification (CAP or CASP CE) or be able to obtain within six months; CE/ OS certificate may include Windows or Linux. Experience with e. MASS and/or Xacta, ACAS/ Nessus, SCAP, Benchmarks, STIG Viewer, and POA&Ms. Experience with patching, reviewing system and event logs for operating systems such as Windows and Linux. Must be able to diagnose and solve problems within a computer network. Have knowledge of National Institute of Science and Technology (NIST) and Defense Information Systems Agency (DISA) standards, guidelines, and requirements as related to Cybersecurity and Risk Management. Have experience in reviewing compliance in Microsoft Windows, Red Hat Linux and other operating systems in accordance with DISA and NIST requirements. Have professional communication skills and the ability to express thoughts and ideas clearly and concisely. Must be a team player, dedicated to program support, capable of multitasking and working severalcomplex and diverse tasks with simultaneous or near simultaneous deadlines. Be a self-starter who is accountable and requires minimal direction and supervision. Be open to new and innovative idea Desired Skills Bachelor's degree in information systems, computer science, or similar. Navy Qualified Validator (NQV)Experience evaluating DISA STIG configurations. Experience with Windows and Linux patching environments. Experience with e. MASS