ACAS Lead (Air-Gapped IL6) / Staff Vulnerability Engineer

📋 Description

• Design and operate vulnerability mgmt for a new air-gapped IL6 SCIF.
• Lead an on-site role near Crystal City, VA, reporting to the VP of Product Security.
• Define end-to-end vulnerability architecture, tooling, and governance.
• Ensure secure, one-way data transfer within the SCIF.
• Build offline vulnerability management engine and governance playbook.
• Collaborate with IL6 service owners to maintain the multitenant security footprint.

🎯 Requirements

• U.S. Citizenship with active U.S. Secret clearance.
• Experience managing vulnerability tools: Tenable.sc, Nessus Manager, or ACAS.
• Knowledge of CVSS, EPSS, remediation lifecycle, and SLA governance.
• DoD 8570/8140 IAT Level II cert (Security+ CE, GSEC, SSCP, CySA+).
• Familiar with CSPM, WAS, and Container Security scanning.
• Scripting for automation in disconnected environments; gov cloud ops (AWS C2S/SC2S) and ECS/Kubernetes.

🎁 Benefits

• Various health plans.
• Time off plans for vacation and sick time.
• Parental leave options.
• Retirement options.
• Education reimbursement.
• In-office perks, and more!