Compliance Detection Lead

Ft Knox, KY

SUMMARY:

Founded in 2001, Indigo IT is an award winning information technology consulting and services company. We are a trusted services provider to government agencies seeking innovative Cloud, Cybersecurity, Knowledge Management, and Enterprise solutions. We know our defense, federal, and civilian customers have critical IT infrastructures that must remain reliable, available, and maximized. Indigo IT is mission focused and committed to maintaining a sense of urgency in anticipating and supporting our customers’ technology goals and objectives. Our unique ability to think beyond today allows our clients to stay ahead of their IT challenges. Recognized on the Inc. 5000 list of America’s fastest growing companies in 2020 & 2021, and named as one of the 2022 Best Places to Work in Virginia, we are always looking to hire top talent in the field - come join us today!

HRC operates under the Cybersecurity standards defined in the Department of Defense (DoD), DoD Risk Management Framework (RMF -2.0), Federal Information Security Modernization Act (FISMA), National Institute of Standards and Technology (NIST), U.S. Cyber Command (USCYBERCOM), Army Cyber Command (ARCYBER), and U.S. Army Network Enterprise Technology Command (NETCOM) directives. These directives require real-time compliance, continuous monitoring, routine inspections, and heightened scrutiny of the cybersecurity posture and associated risks for all HRC systems. This increase in security includes all HRC infrastructure, workstations, servers, applications, network devices, and databases. To combat any threats, an increase to vigilance and awareness is required to detect, prevent, and respond to any perceived incidents and ensure the confidentiality, integrity, and availability (CAI) of data for Soldiers spanning the lifecycle from recruitment through management of Army veterans.

As the Compliance Detection Lead, you will need experience gathering data on information systems and device configurations, which is used for system identification, maintenance, cyber threat assessment and investigation, vulnerability detection, or system exploits. You should have experience working with and understanding of DISA information assurance vulnerability alert (IAVA) announcement of a computer, application, software, or operating system vulnerability. The scope of this requirement includes providing Cybersecurity support spanning all of HRC’s authorization boundaries. Services will include all tasks as defined in this PWS and provide all required deliverables within the established guidelines. The contractor shall provide technical and Cybersecurity guidance while supporting the HRC Information System Security Manager (ISSM).

ESSENTIAL FUNCTIONS/RESPONSIBILITIES:

• Conduct risk Analysis and risk/vulnerability assessments

• Meet all regulatory standards and guidance

• Optimize processes to meet IT security related goals and strategy

• Perform gap analysis

• Perform cloud security services

• Perform continuous monitoring

EDUCATION, EXPERIENCE, & CERTIFICATIONS:

• Security Clearance: TS/SCI

• Certifications: IAT-III (CISSP, CISA, CASP+)

  Join our dynamic team and contribute to the ongoing security and resilience of ARL's networks and systems. As the Vulnerability Manager, your expertise will be crucial in identifying and addressing potential vulnerabilities, ensuring the overall cybersecurity posture of ARL remains robust and compliant.