We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
RCG, Inc. jobs

ACAS-HBSS Administrator - Secret Clearance

RCG, Inc.
United States, D.C., Washington
1750 Pennsylvania Ave Nw (Show on map)
Mar 21, 2025

RCG is a growing federal contracting company and Certified as a Great Place to Work. We are currently seeking an experienced ACAS-HBSS Administrator for a full-time position as part of an ongoing contract, on-site in Washington, D.C. near the McPherson Square station.

Due to security requirements, all successful candidates will be a U.S. Citizen or Lawful Permanent Resident and hold a current, active clearance, Secret or greater.

Job Responsibilities/Duties:

This role is primarily responsible for deploying, configuring, and managing the Assured Compliance Assessment Solution (ACAS) on a SIPR network, ensuring compliance with DoD cybersecurity policies and vulnerability management requirements. Additionally, this role will serve as the HBSS Administrator as a secondary responsibility, supporting Trellix Host-Based Security System (HBSS) operations to enhance endpoint security.

Primary Duties:




  • Configure and maintain the ACAS suite (Tenable.sc, Nessus scanner, SecurityCenter) to support continuous monitoring and vulnerability assessment
  • Conduct scheduled and ad-hoc vulnerability scans, analyze results, and provide remediation strategies to system administrators and security teams
  • Troubleshoot ACAS performance issues, scan failures, and false positives, optimizing system functionality
  • Coordinate with C5ISR support teams to align cybersecurity initiatives and vulnerability remediation efforts
  • Support incident response efforts by identifying vulnerabilities related to emerging threats and zero-day exploits
  • Ensure compliance with DoD RMF, DISA STIGs, NIST 800-53, and federal cybersecurity directives
  • Develop and deliver comprehensive vulnerability reports and compliance documentation for audits and security assessments
  • Manage and track vulnerabilities by creating, updating, and monitoring vulnerability/POA&M (Plan of Action & Milestones) tickets to ensure timely remediation
  • Run SCAP scans to track STIG compliance, generate reports, and coordinate with administrators to implement security baseline configurations
  • Administer and maintain Trellix HBSS, including ePolicy Orchestrator (ePO), Solidcore, DLP, and other endpoint security modules



Requirements:



  • Must hold active Secret clearance or higher
  • Security+, Security+ CE, CISSP, or equivalent DoD 8570.01-M IAT Level II/III certification (mandatory)
  • 3+ years of hands-on experience with ACAS (Tenable) in a DoD or federal environment
  • Experience working within SIPR network environments and understanding classified cybersecurity protocols
  • Premier technical certification (HBSS Administration certification, ACAS course completion certificate, etc.)
  • Vulnerability management experience, including tracking, prioritizing, and remediating vulnerabilities
  • Strong knowledge of DoD STIGs, RMF, NIST 800-53, and CNSSI policies
  • Hands-on experience with Trellix HBSS (ePolicy Orchestrator, Solidcore, DLP, and other endpoint security modules)
  • Experience running and analyzing SCAP scans for STIG compliance tracking and remediation.
  • Proficiency in Microsoft Excel for tracking vulnerabilities, compliance metrics, and reporting.
  • Ability to create and present risk reports and mitigation strategies to both technical and non-technical stakeholders.
  • Familiarity with eMASS, Splunk, and other endpoint security tools
  • Experience with Windows Server administration, particularly in a government environment
  • Scripting knowledge (Python, PowerShell, Bash) for automating security assessments
  • Excellent verbal and written communication skills in the English language.



Certifications:



  • Must hold Security+ CE, CISSP, or equivalent DoD 8570.01-M IAT Level II/III certification (mandatory)
  • ACAS Certification can be obtained within six months of hire



Physical Demands: Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

RCG, Inc. does not discriminate against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibits discrimination against all individuals based on their race, color, religion, sex, sexual orientation/gender identity, or national origin.

Applied = 0
MORE JOBS LIKE THIS

(web-6468d597d4-xmtz2)