Security Engineer

• Play a critical role in the EITaaS program by identifying, tracking, reporting, and mitigating STIG findings for the Department of the Air Force.
• Document detailed action plans, create custom STIG reports for Air Force bases, and provide specific remediation guidance for both Enterprise-managed and base-managed STIGs.
• Conduct monthly reviews of Tenable and SteelCloud STIG reports; analyze data to remediation actions and identify responsible parties.
• Review updates to DISA STIGs when new ones are published.
• Document comprehensive action plans for identified STIGs and prioritize based on severity and exploitability.
• Develop and maintain custom STIG reports tailored for individual Air Force bases and communicate remediation responsibilities and timelines.
• Provide actionable remediation guidance to Air Force bases and leadership aligned with policies and resource constraints.
• Collaborate with base IT teams, Enterprise security teams, and stakeholders; participate in meetings and briefings on trends and remediation progress.
• Engage with the Cyber Security Dashboard team to identify improvements to automated messaging regarding STIGs.
• Stay current with STIG trends, threat intelligence, and best practices; recommend process and tool improvements to streamline assessment and remediation efforts.

Senior Security Technical Implementation Guide, STIG Analyst

Salary

Job Level

Tech Stack

About the role

Requirements

SDR Team Leader

Supervisor, Clinical Information Systems Analyst

Sr. Director, Business Development, DoS/DHS/Fed Civ

Account Manager

Actuarial Analyst