Challenging and Rewarding Place to Work

Our team is our greatest asset, so we invest in the growth and development of our team members and leaders, and thrive on finding the most efficient solution to our customers problems. We’re committed to building a company and atmosphere that does the right thing for our employees, their families, and above all, our customers.

If you’re seeking a challenging career in the field of Information Assurance and Cybersecurity, supporting a variety of industries, a position at SecureStrux could be for you. We are always looking for leaders to join our talented team of highly trained consultants to provide and enhance our risk management and information security services.

 Current Open Positions

Information Technology Manager for Storage/Data-SAN/NAS

DESCRIPTION: Responsible for management of all centralized storage technologies, to include the various NAS environments, storage networks, and all other technologies classified as a storage technology. Assist in development and product engineering as it relates to these technologies, manage and maintain the storage-based systems and the deployment of these technologies, and understand business objectives and seek ways to help the company meet these goals with storage technology.

LOCATION: Fort Shafter, HI

TRAVEL: Possibly up to 10%

CITIZENSHIP/CLEARANCE REQUIREMENT: US Citizen / Top Secret

KEY RESPONSIBILITIES:

  • Identify and categorize storage assets for file, block and object data
  • Generate departmental and application views of storage
  • Optimize data placement within the infrastructure
  • Conduct validation services, prepare POA&M, and compile validation results
  • Identify unused and wasted storage space)
  • Participate in troubleshooting and problem solving for storage performance problems
  • Stay current on new technology and methodologies in area of expertise
  • Respond quickly and effectively to issues and take responsibility for seeing those issues through resolution

REQUIRED SKILLS:

  • Knowledge and minimum two (2) years of experience in Storage Area Network (SAN) / Network Attached Storage (NAS) technologies to include SAN/Clustering Technology, Disaster Recovery Principles, SAN Fiber Channel networks
  • Extensive knowledge and understanding of disk backup technology to include both internal and external arrays
  • Strong understanding of TCP/IP network architecture and implementation
  • Knowledge and understanding of the associated Information Assurance (IA) principles and framework applied to ensure IA and security of those services
  • Enterprise System Administration experience on Windows platform and EMC software including EMC ControlCenter, Navisphere Manager, and Symantec Command Central Storage
  • Understanding of a wide array of server grade applications to include Active Directory (AD), Lotus Notes, Domain Name System (DNS), Microsoft Internet Information Services (IIS), SQL, SharePoint, Apache, Tomcat, System Center Configuration Manager (SCCM) / System Center Operations Manager (SCOM), virtual machine (VM), patch management, and Lightweight Directory Access Protocol (LDAP)

HIGHLY DESIRED SKILLS:

  • 5+ years of solid experience in IT and/or SAN/NAS management
  • Ability to communicate complex technical and programmatic information
  • Ability to work with a team in a diverse environment
  • Strong writing, presentation and professional communication skills
  • Excellent organizational skills and ability to develop and execute multiple priorities and approaches to meet objectives
  • Customer facing, problem determination and solving, team player

REQUIRED CERTIFICATIONS:
Must possess a Microsoft Certified Solutions Associate (MCSA) AND one of the following certifications for IAT III compliance::

  • GIAC Certified Incident Handler (GCIH)
  • GIAC Certified Enterprise Defender (GCED)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)
  • CompTIA Advanced Security Practitioner (CASP)

When responding, please include the following questions and answers in your email:
1. When will you be available to start?
2. What is your expected salary?
3. What is your daytime phone number?
4. Are you a United States citizen?
5. Do you have an active DoD Clearance or any other Agency (DHS, DoE, etc.) clearance? Please provide details.
6. What certifications do you have?

This is a great opportunity for those who have a strong background in IT and SAN/NAS management. We offer a competitive salary and a flexible and relaxed working environment. If you are ready to join a winning team and take the next step in your career, apply today by sending the answers to the above questions, a cover letter, and your résumé to grow@securestrux.com

Senior Information Technology Enterprise Systems Manager-HBSS

DESCRIPTION: Responsible for implementing, maintaining, and operating a Host Based Security System (HBSS) in an enterprise-wide environment. Ensure HBSS servers are maintained and updated with current patches to remain in compliance with DoD directives and regulations. Perform upgrades to HBSS software baseline, install packages, create deployment tasks, conduct testing and manage the deployment of software. Manage HBSS user accounts, to include processing requests for new accounts and setting correct permissions. Maintain HBSS audit log solution. Execute HBSS health checks for Network Enterprise Technology Command (NETCOM). Perform pre- and -post full system state backups on HBSS management suite. Update HBSS queries for Host Intrusion Prevention System (HIPS) content updates. Configure, upgrade, repair, monitor and maintain enterprise servers and client computers.

LOCATION: Ford Island, HI

TRAVEL: Possibly up to 10%

CITIZENSHIP/CLEARANCE REQUIREMENT: US Citizen / Top Secret

KEY RESPONSIBILITIES:

  • Regularly install Windows and third-party software and/or patches via System Center Configuration Manager (SCCM), or manual download from DoD patch repository
  • Perform periodic manual Security Technical Implementation Guide (STIG) evaluation for HBSS, SQL, .NET, Apache, Tomcat on ePolicy Orchestrator (ePO), Agent Handler, SQL Servers, and perform update services as required
  • Perform Security Content Automation Protocol (SCAP) scans to evaluate STIG compliance with Windows operating system (OS), Internet Explorer (IE), Information Assurance Vulnerability Management (IAVM) on Super Agent Distributed Repositories (SADRs), and perform update services as required
  • Execute server baseline scripts on ePO and SQL servers
  • Review SQL maintenance logs and troubleshoot failed tasks and repair as required
  • Deploy Rogue System Detection (RSD) sensors to maintain subnet coverage
  • Maintain Continuity of Operations (COOP) equipment and perform annual COOP testing
  • Implement/configure Asset Baseline Monitor (ABM) baseline and activity scans IAW insider threat, validate successful scans, and update scans as necessary
  • Plan, develop, test, and implement the Host Intrusion Prevention System (HIPS) firewall on workstations and servers on the Pacific Land War Net (PLWN)
  • Review ePO maintenance dashboards to evaluate for McAfee Agent Health, Audit Log, Server Health, RSD health, USCYBERCOM compliance and perform troubleshooting if necessary

REQUIRED SKILLS:

  • Strong grasp of network, OS, and application security
  • Extensive knowledge and minimum four (4) years of experience in the management of an enterprise level management system such as McAfee HBSS and Windows OS
  • Extensive knowledge and experience with Army Golden Master and NETCOMs HBSS baseline and pertinent computer equipment characteristics Experience in the development of installation/patch packages for the implementation of enterprise systems software changes and new operating system releases
  • Strong understanding of TCP/IP network architecture and implementation
  • Knowledge and understanding of the associated IA principles and framework applied to ensure information assurance and security of those services
  • Enterprise System Administration experience on Windows platforms and an understanding of a wide array of server grade applications to include Domain Name System (DNS), Microsoft Internet Information Services (IIS), SQL, SharePoint, Apache, Tomcat, Storage Area Network (SAN) / Network Attached Storage (NAS), virtual machine (VM), patch management, and Lightweight Directory Access Protocol (LDAP)

HIGHLY DESIRED SKILLS:

  • 7+ years of solid experience in IT management / cybersecurity in an enterprise level management systems such as HBSS
  • Ability to communicate complex technical and programmatic information
  • Ability to work with a team in a diverse environment
  • Strong writing, presentation and professional communication skills
  • Excellent organizational skills and ability to develop and execute multiple priorities and approaches to meet objectives
  • Customer facing, problem determination and solving, team player

REQUIRED CERTIFICATIONS:
Must possess a Microsoft Certified Solutions Associate (MCSA) AND one of the following certifications for IAT III compliance::

  • GIAC Certified Incident Handler (GCIH)
  • GIAC Certified Enterprise Defender (GCED)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)
  • CompTIA Advanced Security Practitioner (CASP)

When responding, please include the following questions and answers in your email:
1. When will you be available to start?
2. What is your expected salary?
3. What is your daytime phone number?
4. Are you a United States citizen?
5. Do you have an active DoD Clearance or any other Agency (DHS, DoE, etc.) clearance? Please provide details.
6. What certifications do you have?

This is a great opportunity for those who have a strong background in cybersecurity and in an enterprise-wide systems management environment. We offer a competitive salary and a flexible and relaxed working environment. If you are ready to join a winning team and take the next step in your career, apply today by sending the answers to the above questions, a cover letter, and your résumé to grow@securestrux.com

Part-Time Command Cyber Readiness Inspection (CCRI) Analyst

DESCRIPTION: You will be working as part of a 8 person team providing Cybersecurity Analysis for the Joint Service Provider (JSP) Pentagon.  Work includes one week engagements to various sites within the National Capital Region (NCR) to complete Cybersecurity Assessment Visits. This is a great opportunity for those who have a background in Cybersecurity and Risk Analysis.   This position also provides opportunities for professional growth in learning and training in a variety of technologies to support the customer in system security and hardening using various DoD approved tools.

LOCATION: Alexandria, VA

TRAVEL: Willing to travel <50-70%.

CITIZENSHIP/CLEARANCE REQUIREMENT: US Citizen / Active Interim Top Secret (SCI Eligible)

KEY RESPONSIBILITIES:

  • Perform various security assessments using DoD Security Technical Implementation Guides (STIG) and DISA security content automation protocol (SCAP) compliant tools on various technologies primarily on Windows-based programs, but on occasion UNIX, and networking technologies
  • Perform CCRI inspections in accordance with McAfee ePolicy Orchestrator, Host Based Security System (HBSS), and OPORD 12-1016
  • Perform Vulnerability Scanning using ACAS Suite (Nessus & Security Center)
  • Must be a team player who is self-motivated, flexible, and willing to support various Security Engineers and Government Teams on related efforts

REQUIRED SKILLS:

  • Current CISSP, CISM, CISA, CASP, Security+ (CE), or CAP certification(s)
  • Experience in application of IA and Computer Network Defense (CND) concepts, practices, and tools
  • Strong information security/cybersecurity background
  • Ability to communicate complex technical and programmatic information
  • Ability to work with a team in a diverse environment
  • Strong technical writing, presentation and communication skills

HIGHLY DESIRED SKILLS:

  • Current or recently certified in a technology within the CCRI Reviewer Certified Program (RCP)
  • High degree of competency with at least some if not many of the following technologies: Domain Name Services (DNS), UNIX, Windows, Network Security, access control list (ACL) Management and Network Protocol, Releasable Network, Physical Security, Assured Compliance Assessment Solution (ACAS) Suite (Nessus & Security Center), Database, Exchange, Active Directory, VoIP, and Web Services technologies
  • Familiarity with DoD IA Policies, such as DoDI 8510.01, DoD 8500.2, DoD RMF, COMSCINST 5239.3A
  • Familiarity with Federal Information Security Management Act (FISMA) and National Institute of Standards and Technology (NIST) 800 Series Regulations and Polices

HIGHLY DESIRED CERTIFICATIONS:
CISSP, CISA, CISM, CAP, SCNA, GSE, or GCIH, CCNA, MCSE

When responding, please include the following questions and answers in your email:
1. When will you be available to start?
2. What is your expected salary?
3. What is your daytime phone number?
4. Are you a United States citizen?
5. Do you have an active DoD Clearance or any other Agency (DHS, DoE, etc.) clearances? Please provide details.
6. What certifications do you have?

This is a great opportunity for those who have a strong background in IA and Cybersecurity. We offer a competitive salary, excellent benefits and incentive package, and a flexible and relaxed working environment. If you are ready to join a winning team and take the next step in your career, apply today by sending the answers to the above questions, a cover letter, and your résumé to grow@securestrux.com

We also have other IA Cybersecurity Analyst positions that require auditing these same kinds of systems and technologies, so if this is not a fit for you please still enquire with your resume and contact information. If you are not a right fit for this position or are not interested at this time, we will be sure to consider you for future positions. However, we would be grateful if you could forward this information to anyone you know who might be interested. Referrals are always greatly appreciated.

Certification and Accreditation (C&A) Analyst - JSP - Crystal City, VA

DESCRIPTION: This position provides technical security assistance and guidance to SecureStrux customers in support of the Assessment and Authorization (A&A)/Certification and Accreditation (C&A) process. As a C&A analyst, you will be responsible for all phases of A&A/C&A to ensure compliance and provide guidance on IT Security requirements. As the DoD migrates to the Federal Risk Management Framework (RMF), you will support all phases of the transition for the organization by updating policies, procedures, and processes as required. The position requires technical knowledge of the DoD Information Assurance Certification and Accreditation Process (DIACAP) process for all Information Systems (IS).

LOCATION: This opportunity is located in Crystal City, VA. Candidates should live in or close to Alexandria, VA/Washington, DC/National Capital Region (NCR) area.

CITIZENSHIP/CLEARANCE REQUIREMENT: US Citizen / minimum DoD Interim Top Secret required

KEY RESPONSIBILITIES:

  • Manage and support RMF and DIACAP process for all IS, enclaves, and application systems under the purview of the CIO per DoDI 8510.01
  • Prepare a plan to migrate from DIACAP to RMF; update policies, procedures and processes as required in support of migration
  • Create and deliver RMF and DIACAP Implementation Plan and execute DIACAP implementation
  • Conduct validation services, prepare POA&M, and compile validation results
  • Provide support to the Connection Approval Process (CAP) and DoD IT Portfolio Registry (DITPR)
  • Attend meetings and working groups as directed in support of compliance and A&A/C&A activities

REQUIRED SKILLS:

  • DoD 8570 IAM LVL I Certified required (Security + CE, CAP, GISF, or GSLC)
  • DoD 8570 IAM/IAT LVL III Certified preferred (CASP, CISA, CISM, CISSP)
  • Minimum one (1) years demonstrated experience in DoD Compliance A&A/C&A policy, procedures, and processes
  • Comprehensive, hands on experience with IA and Cybersecurity Assessments
  • Familiar with DoDI 8500.01, NIST 800-53.R4, and NIST 800-37
  • Strong writing, presentation and professional communication skills
  • Familiarity with the following technologies: Windows and UNIX security hardening; Network security; ACAS, and other Vulnerability Scanning Tools; , Windows 2008/2012; SQL Databases, Web Applications Services, and other Microsoft User and Server Applications

When responding, please include the following questions and answers in your email:
1. When will you be available to start?
2. What is your expected salary?
3. What is your daytime phone number?
4. Are you a United States citizen?
5. Do you have an active DoD Clearance or any other Agency (DHS, DoE, etc.) clearance? Please provide details.
6. What certifications do you have?

This is a great opportunity for those who have a background in Certification and Accreditation. We offer a competitive salary and a flexible and relaxed working environment. If you are ready to join a winning team and take the next step in your career, apply today by sending the answers to the above questions, a brief cover letter, and your résumé to grow@securestrux.com

Senior Information Assurance (IA) Engineer

DESCRIPTION: Work as part of a 15+ person team to provide Cybersecurity and Information Assurance (IA) guidance for the Department of Defense (DoD) and in support of DoD customers. Conduct systems security analysis and implementation, program design, configuration management, integration and testing of IA products and techniques. Ensure systems follow the Federal Information Security Management Act (FISMA) process, to include developing, modifying, and maintaining system security documentation and recording and managing the system-level Plan of Action and Milestones (POA&M). Provide solutions based on a firm understanding of Government/industry policy, practices, procedures, customer requirements, and emerging security technologies and future trends in support of information system and network security.

LOCATION: Our base working area is Fort Meade, MD however this opportunity allows for flexibility and telecommuting.

CITIZENSHIP/CLEARANCE REQUIREMENT: US Citizen/Active Top Secret; SCI eligible preferred.

KEY RESPONSIBILITIES:

  • Provide monitoring, tracking, and monthly reporting of policy, procedures, and security assessments for various classified and unclassified product lines
  • Provide DoDI 8500.2 to NIST SP 800.53 R4 IA control mapping using existing DoD IA mapping guides and tools for various DoD programs
  • Provide various Vulnerability Management System (VMS), Enterprise Mission Assurance Support Service (eMASS), and Risk Management Framework (RMF) vulnerability, compliance, artifact, and POA&M reports
  • Develop and tailor RMF training for staff and mission partners

REQUIRED SKILLS:

  • Bachelor degree in IT or a related technical field or possess at least 10 years of equivalent experience working with the DoD in technical operations or engineering in lieu of a degree
  • Experience in application of IA and Computer Network Defense (CND) concepts, practices, and tools
  • Experience with network design, router configuration, and firewall configuration
  • Experience with network security, operations, and maintenance
  • Experience with System Security Plan (SSP) development, audit and accreditation support, and vulnerability support
  • Knowledge of security practices and procedures for various network devices and operating systems
  • Knowledge of current firewall deployments and security policies
  • Working knowledge of VMS
  • Strong information security/cybersecurity background in DoDI 8500.2 and FISMA RMF SP 800.53 R4
  • Strong writing, presentation and communication skills and the ability to multi-task efforts based on a dynamic environment and changing priorities
  • Ability to communicate complex technical and programmatic information
  • Ability to work together in a diverse environment
  • Active CISSP or equivalent 8570 IAM Level III certification; Microsoft Certified Professional (MCP); CompTIA Cloud Essentials certifications

HIGHLY DESIRED SKILLS:

  • Master degree in IT or a related technical field
  • Experience with Multinational/Coalition networks
  • Familiar with DoD IA Policies (e.g. DoDI 8510.01, DoD 8500.2, DIACAP)
  • Familiar with access control list (ACL) Management and Network Protocol understanding System Administration in DHCP, DNS, Active Directory, PKI, Databases, Web Applications and Services, Microsoft User and Server Applications
  • System Administration experience with UNIX, LINUX, and Windows operating systems
  • Strong understanding of Cloud Services
  • Working knowledge of network security management and operations in a classified environment
  • Working knowledge of network protocols and common services, such as: DNS, FTP, SMTP, SNMP and TCP/UDP/ICMP
  • Experience as an ISSO or ISSM in a TS/SCI environment

HIGHLY DESIRED CERTIFICATIONS:
CISSP-ISSPM, MCP, MCSA, MCSE, CompTIA Cloud Essentials, CAP

When responding, please include the following questions and answers in your email:
1. When will you be available to start?
2. What is your expected salary?
3. What is your daytime phone number?
4. Are you a United States citizen?
5. Do you have an active DoD Clearance or any other Agency (DHS, DoE, etc.) clearances? Please provide details.
6. What certifications do you have?

This is a great opportunity for those who have a strong background in IA and Cyber Security. We offer a competitive salary and a flexible and relaxed working environment. If you are ready to join a winning team and take the next step in your career, apply today by sending the answers to the above questions, a cover letter, and your résumé to grow@securestrux.com

Command Cyber Readiness Inspection (CCRI) Consultant- Crystal City, VA

DESCRIPTION: Working independently and at other times together as a team, this position provides technical security assistance and guidance to SecureStrux customers in support both Defense Security Service’s Security Vulnerability Assessments (SVAs) and Defense Information Systems Agency (DISA) and USCYBERCOM CCRI Phase IV program. The position requires technical knowledge of how to secure network and application architectures and how they interact with other systems. As a SVA and CCRI consultant, you will use the DoD Security Technical Implementation Guides (STIGs), relevant CTO’s, CND Directives, Contributing Factors, and various DoD auditing and reporting tools to provide customers with a risk assessment of the target to the DoD customer and Team Lead throughout the entire review process.

LOCATION: Our offices are in Crystal City, VA. Candidates should live in or close to the National Capital Region (NCR)

TRAVEL: Up to 50% – This position is contingent upon the award of a contract.

CITIZENSHIP/CLEARANCE REQUIREMENT: US Citizen / Secret

KEY RESPONSIBILITIES:

  • Perform vulnerability assessments using DoD security content automation protocol (SCAP) compliant tools on various Operating Systems, Network Appliances, and Applications
  • Perform various manual assessments using the appropriate DISA STIG, Security Readiness Guide (SRG) or
  • Security Checklists in cases where automated tools cannot provide proper assessment of security controls
  • Prepare Status reports and Gap Analysis Reports
  • Prepare sites for upcoming CCRI
  • Provide Risk Assessment guidance and assist in preparing After Action Plans (AAPs)

REQUIRED SKILLS:

  • Experience with conducting DSS SVA or CCRIs
  • Familiar with the DoD 8500.2 or FISMA 800-53 Information Assurance (IA) Controls, Certification and Accreditation (C&A) and Risk Management Frameworks (RMF)
  • Experience with many of the following technologies: Network Routing, Switching/Firewall/ACL administration, Cisco, Foundry, Juniper, Nessus and ACAS, and other Vulnerability Scanning Tools, DHCP, DNS, Active Directory or other Directory Services, UNIX/Linux OS Experience, Windows 2008, SharePoint, Exchange and Blackberry Enterprise Services, McAfee ePolicy Orchestrator and HBSS, SQL Databases, Web Applications Services, other Microsoft User and Server Applications)

HIGHLY DESIRED SKILLS:

  • 5+ years of solid experience in IT Security / Cybersecurity / Information Assurance field
  • Ability to communicate complex technical and programmatic information to both technical engineers and leadership
  • Ability to work with a team and be team minded.
  • Strong writing, presentation and professional communication skills
  • Excellent organizational skills and ability to develop and execute multiple priorities and approaches to meet objectives
  • Already obtained or at a minimum have the willingness to quickly take and pass Security+ and/or equivalent certification within 30 days of employment

HIGHLY DESIRED CERTIFICATIONS:

CISSP, CISM, MCSE, MCSA, CCNA, RHCSA, CAP, Security +, other industry standard IT Security certification(s), and/or other DoD approved 8570 IAM Level II & III Certifications.

When responding, please include the following questions and answers in your email:
1. When will you be available to start?
2. What is your expected salary?
3. What is your daytime phone number?
4. Are you a United States citizen?
5. Do you have an active DoD Clearance?
6. What certifications do you have?

This is a great opportunity for those who have a strong background in IA and Cyber Security. We offer a competitive salary and a flexible and relaxed working environment. If you are ready to join a winning team and take the next step in your career, apply today by sending the answers to the above questions, a cover letter, and your résumé to grow@securestrux.com

Life at SecureStrux

SecureStrux is a small, agile company that is able to customize their benefits to meet the individual needs of their employees and their families. We are proud to present our regular status employees with this comprehensive, adaptable, and competitive benefits program. We share many of the costs for these offerings in part or in full.[/vc_column_text]

Some of Our Benefits

Compensation
+ Competitive Salary
+ Competitive Vacation Leave
+ 10 paid Federal Holidays
+ Generous employee referral program

Fully or Partially Paid Company Health Benefits
+ Multiple Health Care Plans
+ Vision
+ Dental
+ FSA

Financial-Related Benefits
+ Company Contributed 401K
+ Roth IRA
+ 529 College Fund

Company Paid Disability and Life Insurance
+ Life Insurance
+ Short Term Disability
+ Long Term Disability

Employee Development and Morale
+ Promotions from within
+ Professional development with up to $2,500 per year in training benefits
+ 100’s of online courses free to Employees
+ Annual company apparel and purchase allowance
+ Commuter Benefits
+ Adoption Assistance
+ Company Lunches and Holiday Parties

 If you’d like to learn more about a position posted or other ways of working with us, please send a resume and cover letter or your specific request via email to grow@securestrux.com and we will ensure that we respond quickly. SecureStrux is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, national origin, protected veteran status, or disability status.