Author name: Bruce

  Position: IT Admin Location: Lackland AFB, San Antonio, TX Duration: Full Time Active Top Secret clearance required EDUCATION REQUIREMENTS: -  One or more of the following IAT Level II Certifications (GSEC, Security +, SSCP, CCNA-Security) -  CND Certification (GCIA, CEH, GCIH). PRIMARY DUTIES: -  Conduct network security monitoring and intrusion detection analysis for the NIPRNet and SIPRNet using the AF’s selected IDS/IPS toolset -  Research NIPR and SIPR defensive cyber operations events to determine the necessity for deeper analysis and conduct an initial assessment of type and extent of intruder activities. -  Enter event data into mission support systems according to operational procedures and reports through the 33rd operational chain. -  Record suspicious events, meeting established thresholds, into the operational database for suspicious traffic. Records shall contain sufficient information to stimulate future research of suspicious traffic. The record shall answer the: who, what, where, why and when for this suspicious activity. -  Provide computer security-related assistance to Air Force field units (example: the Integrated Network Operations and Security Center (INOSC), Base Information Assurance shop) in countering vulnerabilities, minimizing risk, and improving the security posture of AF computer networks and systems within the scope of operational requirements and mission execution. BASIC QUALIFICATIONS: -  Intermediate knowledge with one or more of the IDS/IPS systems currently in use by the Department of Defense (DoD), Services, and Agencies (i.e., AF, Navy, Army, DC3, DISA) or Federal Government and intermediate experience in the following areas: EDUCATION REQUIREMENTS: -  One or more of the following IAT Level II Certifications (GSEC, Security +, SSCP, CCNA-Security) -  CND Certification (GCIA, CEH, GCIH). Regards, Sukhpreet Kaur Sr. Technical Recruiter 22nd Century Technologies, Inc. COMM: 908-765-0002 X 352 EMAIL ID: sukhpreetk@tscti.com

 Title                                    IT Admin/Security Analyst    Position:                              1 Location:                            Montgomery, AL Gunter AFB AL SECURITY ANALYST  PRIMARY DUTIES: -  Conduct network security monitoring and intrusion detection analysis for the NIPRNet using the AF’s selected IDS/IPS toolset -  Research NIPR and SIPR defensive cyber operations events to determine the necessity for deeper analysis and conduct an initial assessment of type and extent of intruder activities. -  Enter event data into mission support systems according to operational procedures and reports through the 33rd operational chain. -  Record suspicious events, meeting established thresholds, into the operational database for suspicious traffic. Records shall contain sufficient information to stimulate future research of suspicious traffic. The record shall answer the: who, what, where, why and when for this suspicious activity. -  Compile suspicious events records and other artifacts as part of its Monthly Operational Report. -  Provide pass-on information to bring incoming crews up to speed on latest suspicious traffic seen from a given port, IP, etc. -  Coordinate with the Crew Commander for authorization before departing after pass-on to incoming shift. -  Provide computer security-related assistance to Air Force field units (example: the Integrated Network Operations and Security Center (INOSC), Base Information Assurance shop) in countering vulnerabilities, minimizing risk, and improving the security posture of AF computer networks and systems within the scope of operational requirements and mission execution. -  Provide focused DCO, tailored analysis and monitoring operations of specified sensor locations during contingency operations and in support of named DCO operations and exercises. -  Must be willing to receive additional training and maintain position qualification to perform assigned duties, as required BASIC QUALIFICATIONS: -  Intermediate knowledge with one or more of the IDS/IPS systems currently in use by the Department of Defense (DoD), Services, and Agencies (i.e., AF, Navy, Army, DC3, DISA) or Federal Government and intermediate experience in the following areas: IP addressing and domain name service; network components; Transmission Control Protocol (TCP)/User Datagram Protocol (UDP), File Transfer Protocol (FTP), Simple Mail Transfer Protocol (SMTP), and Hypertext Transfer Protocol (HTTP); and understand the network Open Systems Interconnection (OSI) model EDUCATION REQUIREMENTS: -  One or more of the following IAT Level II Certifications (GSEC, Security +, SSCP, CCNA-Security) -  CND Certification (GCIA, CEH, GCIH). Active TS/SCI Must be able to work shifts as required Position: NIPRNet and SIPRNet Admin Location: Lack land AFB, San Antonio, TX Active Top Secret clearance required EDUCATION REQUIREMENTS: -  One or more of the following IAT Level II Certifications (GSEC, Security +, SSCP, CCNA-Security) -  CND Certification (GCIA, CEH, GCIH). PRIMARY DUTIES: -  Conduct network security monitoring and intrusion detection analysis for the NIPRNet and SIPRNet using the AF’s selected IDS/IPS toolset -  Research NIPR and SIPR defensive cyber operations events to determine the necessity for deeper analysis and conduct an initial assessment of type and extent of intruder activities. -  Enter event data into mission support systems according to operational procedures and reports through the 33rd operational chain. -  Record suspicious events, meeting established thresholds, into the operational database for suspicious traffic. Records shall contain sufficient information to stimulate future research of suspicious traffic. The record shall answer the: who, what, where, why and when for this suspicious activity. -  Provide computer security-related assistance to Air Force field units (example: the Integrated Network Operations and Security Center (INOSC), Base Information Assurance shop) in countering vulnerabilities, minimizing risk, and improving the security posture of AF computer networks and systems within the scope of operational requirements and mission execution. BASIC QUALIFICATIONS: -  Intermediate knowledge with one or more of the IDS/IPS systems currently in use by the Department of Defense (DoD), Services, and Agencies (i.e., AF, Navy, Army, DC3, DISA) or Federal Government and intermediate experience in the following areas: EDUCATION REQUIREMENTS: -  One or more of the following IAT Level II Certifications (GSEC, Security +, SSCP, CCNA-Security) -  CND Certification (GCIA, CEH, GCIH). Ankush Jamalta Team Lead 22nd Century Technologies Inc. (Minority, 8(A) & GSA Schedule 70 Company) CMMi Level 3, ISO 9001:2008 and SBA certified 8(a) SDB 1 Executive Drive, Suite 285 Somerset New Jersey , 08873 908-765—0002 Ext 369 Fax: 609-228-4044 Email: Ankushj@tscti.com Website: www.tscti.com

STIG Update subscribers, We’ve recently switched to GovDelivery to manage and send out our STIG Update notices. There will be a Welcome Email sent shortly from GovDelivery, inviting you to update your subscription profile. If you do not receive the Welcome Email, please check your Spam or Bulk E-Mail. Our email may have been blocked and redirected by accident. To avoid this in the future, please add ‘subscriptions@disa.mil’ and ‘disa@public.govdelivery.com’  to your ‘Approved  Senders’ list by following the below steps: Outlook 2010 – From the ‘Home’ tab, select ‘Junk -> Junk E-Mail Options’ – Select the ‘Safe Sender’ tab in the ‘Junk E-Mail Options’ window and  Add ‘subscriptions@disa.mil’ and ‘disa@public.govdelivery.com’ To update your account password, subscribe to additional topics or remove your email address from the list, please visit the link to the Subscriber Preferences page found in the Welcome Email. If you DO NOT receive the Welcome Email, you can still add your email on the Subscription page: https://public.govdelivery.com/accounts/USDISA/subscriber/new?topic_id=USDISA_181 Very respectfully, – The IASE Web Team

The State of Colorado Parks and Wildlife division with the Governor’s office of Information technology (Client) is seeking a qualified Contractor to serve as a Senior Developer during the API development, unit testing and integration testing phase of the Integrated Parks and Wildlife System Project (IPAWS) project. This document outlines the project and the qualifications for the Senior Developer. The successful candidate must be well versed in unit testing including test driven development, nUnit, Visual Studio, and other unit testing frameworks and tools. In addition, they must be comfortable creating mock objects, test harnesses, and other advanced unit testing strategies. They need to be able to demonstrate involvement in past projects including the aforementioned items. We also require 5-6 years of experience as a software developer in progressively more complex assignments with experience managing requirements for software application development, service delivery, and customer satisfaction, or relevant experience in an IT applications/solutions delivery role. The IPAWS APIs will be developed using .Net version 4 and C# . The senior developer must have experience writing T-SQL, web services and SSRS packages. Work will be conducted on site at 6060 North Broadway. There will be minimal work from home opportunities. Skills Candidate’s competency (Expert, Advanced, Proficient or Novice) Candidate’s experience in years Last used (month/year) C# IIS JUnit Microsoft .NET Framework Microsoft SQL Server If you are qualified, available, interested, planning to make a change, or know of a friend who might have the required qualifications and interest, please call me ASAP at (972) 474-8990, even if we have spoken recently about a different position. If you do respond via e-mail please include a daytime phone number so I can reach you. In considering candidates, time is of the essence, so please respond ASAP. Lionel Smith Software Transformations, Inc. 5212 Tennyson Parkway, Suite 110 Plano, TX 75024 lionels@softtrans.net  |  (972) 474-8990

Position: IT Admin Location: Lackland AFB, San Antonio, TX Duration: Full Time Active Top Secret clearance required EDUCATION REQUIREMENTS: -  One or more of the following IAT Level II Certifications (GSEC, Security +, SSCP, CCNA-Security) -  CND Certification (GCIA, CEH, GCIH). PRIMARY DUTIES: -  Conduct network security monitoring and intrusion detection analysis for the NIPRNet and SIPRNet using the AF’s selected IDS/IPS toolset -  Research NIPR and SIPR defensive cyber operations events to determine the necessity for deeper analysis and conduct an initial assessment of type and extent of intruder activities. -  Enter event data into mission support systems according to operational procedures and reports through the 33rd operational chain. -  Record suspicious events, meeting established thresholds, into the operational database for suspicious traffic. Records shall contain sufficient information to stimulate future research of suspicious traffic. The record shall answer the: who, what, where, why and when for this suspicious activity. -  Provide computer security-related assistance to Air Force field units (example: the Integrated Network Operations and Security Center (INOSC), Base Information Assurance shop) in countering vulnerabilities, minimizing risk, and improving the security posture of AF computer networks and systems within the scope of operational requirements and mission execution. BASIC QUALIFICATIONS: -  Intermediate knowledge with one or more of the IDS/IPS systems currently in use by the Department of Defense (DoD), Services, and Agencies (i.e., AF, Navy, Army, DC3, DISA) or Federal Government and intermediate experience in the following areas: EDUCATION REQUIREMENTS: -  One or more of the following IAT Level II Certifications (GSEC, Security +, SSCP, CCNA-Security) -  CND Certification (GCIA, CEH, GCIH). Thanks & Regards Vandana Team Lead 22nd Century Technologies (Minority, 8(A) & GSA Schedule 70 Company) CMMi Level 3, ISO 9001:2008 and SBA certified 8(a) SDBEmail: vandanav@tscti.com

www.tscti.com Given below is the job details: Agency:                                Naval Research Laboratory, Department of the Navy Position:                              Program Manager Duration:                             Long Term 100%Remote              Location:                             100% Remote Support to Monterey, CA Job Description Secret Security Clearance or Higher required for this job. •             At least ten (10) years of experience in technical management of DoD IT contracts. •             A bachelor’s degree in Business Administration, Computer Science or in a related technical field such as engineering or science, or equivalent experience. Thanks & Regards, Harpal Singh Technical Recruiter 22nd Century Technologies Inc.(TSCTI) Direct : (908) 765-0003 Ext: 315 Fax : 609-228-4044 Email: singhh@tscti.com Web: www.tscti.com 22nd Century Technologies Inc. is an Equal Employment Opportunity and Affirmative Action employer. 8(a), SDB, MBE, CMMi3, ISO 9001:2008, ISO 20000-1:2011, ISO 27001:2005 Certified

Title:                   Senior Information Assurance Engineer Location:             Monterey, CA              Duration:           Long Term       Job Requirements: A bachelor’s degree in Computer Science or in a related technical field such as engineering or science, or equivalent experience. At least ten (10) years of experience in Information Security, preferably within DoD. At least five (5) years of experience with DIACAP accreditation process. Demonstrable working knowledge of LINUX and Windows system administration from the security point-of-view, ACAS, Nessus, and NMAP scanning tools, DIACAP accreditation processes, and Help Desk and Wiki support tools. Certified Information Systems Security Professional (CISSP) certification. Thanks & Regards Rohit Walia Associate Recruiter Minorities Woman own Company 22nd Century Staffing Fax:     703-542-3536 Rohitw@22ndstaffing.com

Title:                                     Security Analyst Location:                             Monterey, CA Duration:                             Full Time Client:                                  Defense Language Institute Description: Duties may include: •             Support an Information Systems Security, Education, Training, and Awareness Program. •             support implementation and enforcement of Information Security Policies and Procedures. •             Review and update all Information Systems Security Plans/SSPs and support certification and accreditation efforts. •             Provide technical support in the areas of vulnerability assessment, risk assessment, and security implementation. Thanks & Regards, Parmender Singh Technical Recruiter Email: parmenders@tscti.com

Job Title: Sr. Security Consultant Location: Atlanta GA Type : DIRECT HIRE Shift: Wed Sat (11am 10pm EST) MAJOR JOB RESPONSIBILITIES: ·         Monitor incoming event queues for potential security incidents ·         Identify and act on anomalous network activity. ·         Perform hunting for malicious network activity. ·         Perform initial investigation and triage for potential security incidents. ·         Provide accurate & priority driven analysis on cyber activity/threats. ·         Perform payload analysis of packets. ·         Detonate malware to assist with threat research. ·         Resolve or coordinate the resolution (escalate) of cyber security events. ·         Create, manage, and dispatch incident tickets. ·         Monitor external event sources for security intelligence and actionable incidents. ·         Maintain shift logs with relevant activity. ·         Document investigation results, ensuring relevant details are passed to senior analysts and stakeholders. ·         Participate in root cause analysis or lessons learned sessions. ·         Write technical articles for knowledge sharing. ·         Establish and maintain excellent working relationships/partnerships with the cyber security and infrastructure support teams throughout the Information Technology organization, as well as business unit operation centers. ·         Must comply with any regulatory requirements. JOB REQUIREMENTS: ·         A formal education in Computer Science or a related field; or equivalent experience in IT Security related roles is required. ·         Experience with database monitoring security products like IBM Guardium preferred. ·         Fundamental knowledge of IT core infrastructure and cyber security components//devices preferred. ·         Minimum 1 year experience with TCP/IP Networking and knowledge of the OSI model preferred. ·         Minimum 1 year experience with OS management and Network Devices preferred. ·         Minimum 1 year experience with Intrusion Detection/Prevention Systems preferred. ·         Minimum 1 year experience with Antivirus Systems preferred. ·         Minimum 1 year experience monitoring threats via a SIEM console preferred. ·         1+ years performing analysis of log files from a variety of sources, to include individual host logs, network traffic logs, firewall logs, or intrusion prevention logs. ·         Formal IT Security/Network Certification such as CompTIA Security +, Cisco CCNA, SANS GIAC Certified Intrusion Analyst (GCIA), InfoSphere Guardium preferred. ·         Experience with packet analysis (Wireshark) and Malware analysis a plus. ·         Experience working in a Security Operations Center environment is a plus. ·         Client ArcSight experience is a plus. Thanks & Regards, Sam Sharma Tech Providers, Inc. Phone: 404-594-5767 sam@techproviders.com www.techproviders.com

Northrop Grumman Information Systems is seeking a Computer Systems Analyst (Windows Systems Adminstrator) to support its Linthicum, MD location. Position Summary / Responsibilities • Recommends and implements system enhancements that will improve the performance and reliability of the system including installing, upgrading/patching, monitoring, problem resolution, and configuration management • Apply technical skills and experience in managing selected Windows servers and numerous workstations supporting highly skilled engineers that are remote or on site • Designs, tests, and implements state-of-the-art secure operating systems, networks, and database products • Ensures data integrity by evaluating, proposing, implementing and managing software and hardware solutions • Analyzes internal or external customer needs and determines equipment/software requirements for solutions to problems by means of automated systems • Develops and documents technical processes and procedures as needed • Recommends and implements system enhancements that will improve the performance and reliability of the system including installing, upgrading/patching, monitoring, problem resolution, and configuration • Ensures systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan • Provide backup to various programs located at site Basic Qualifications: To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below: Bachelor’s degree and 10 years applicable work experience with Windows Systems Administration; 8 Years with Masters (additional years of related work experience may be substituted for degree requirement) Active TS/SCI Clearance Experience with Windows 2003, 2008, 2012, XP, Windows 7 Experience with Active Directory and Group Policy management Knowledge of switches, routers, and storage area networks Must be able to obtain DoD 8570 Certification Willingness to work after hours or weekends as needed US Citizenship is required in order to obtain and maintain required security clearance Preferred Qualifications: Able to work in a fast paced environment where multiple projects are being developed and deployed simultaneously Able to work well within a team environment and able to adapt quickly to change Experience with System Logging and Auditing Experience with Classified processing environments and procedures Experience with Networks and networking concepts Thanks & Regards, Ayden Nelson Technical Recruiter Direct :  908 765 0002 Ext: 351 Fax No: 609-228-4044