Supporting the information system owner to complete security assessments, achieve system authorizations, continuous monitoring, and configuration management, through eMASS.
Performing cybersecurity testing, analysis, and reporting by conducting ACAS scans, STIG checks, port scanning, application code review, RMF control review, and POAM.
Providing in‑depth analysis on cybersecurity test results, remediation steps, and potential mitigating factors.
Assessing NSWC systems in accordance with Navy, NIST, DoD, and DISA guidance.
Reporting security incidents in accordance with the Command's Incident Response Plan.
Verifying configuration management and tracking security update implementation to systems using existing automated tools.
Adhering to pre‑defined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems, ens...