Information Systems Auditor
: Job Details :

Join to apply for the Information Systems Auditor role at Exeter Government Services, LLC.

Exeter is seeking multiple Cybersecurity Analysts and Engineers to support the U.S. Army at Fort Knox, Kentucky. Multiple permanent positions are available at all experience levels, from Entry to Senior level, on a multi-year contract. Paid relocation is not available; candidates must be local or willing to relocate at their own expense. Infrequent travel (less than 10%) may be required.

Key duties include:

• Supporting Command Cyber Readiness Inspections (CCRI) and Risk Management Framework (RMF) mission sets.
• Developing and maintaining RMF Certification and Accreditation (C&A) packages to sustain Authorization to Operate (ATO).
• Validating and uploading RMF documentation into the eMASS portal.
• Processing Plans of Action and Milestones (POA&Ms).
• Supporting IT Incident Response (IR) actions and reporting.
• Tracking Cybersecurity Tasking Orders, Warning Orders, and Operation Orders.
• Providing packages, templates, and guidance for Army Certificates of Networthiness (CoN).
• Writing System Security Plans (SSP) and Tenant Security Plans (TSP).
• Managing Access Control Lists (ACLs).
• Supporting cybersecurity inspection teams.
• Performing logging, correlation, and scanning with tools like Fortify SCA, ACAS, HP ArcSight, and ESM.
• Ensuring DISA STIGs are implemented.
• Conducting risk analysis and vulnerability assessments.
• Managing data in the Army Portfolio Management Solution (APMS) for FISMA reporting.

Qualifications include:

• U.S. citizen with active DoD SECRET security clearance. Uncleared candidates cannot be considered.
• Current DoD 8570.01-M IAT Level II certification (e.g., Security+ CE). Uncertified candidates cannot be considered.
• Minimum 2 years' experience in DoD Cybersecurity or a related Bachelor's Degree. Higher experience levels for senior roles.
• Hands-on experience with DoD Cyber tools (ACAS, Fortify, ArcSight, eMASS, HBSS).

Desired skills include recent experience supporting Army cybersecurity commands, existing relationships with Army/DoD personnel, higher-level certifications (CISSP, CASP), and prior Army/DoD cybersecurity experience. Veterans are highly encouraged to apply.

Qualified applicants will be considered without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or veteran status.