IAP Worldwide Services Vulnerability Manager in Classified Location, Afghanistan


Vulnerability Manager

Tracking Code


Job Description

As a leading international services company for more than 65 years, IAP provides a broad spectrum of services and solutions to U.S. and international government agencies, and organizations. A world-class leader in providing seasoned program management, IAP leverages and integrates its capabilities – IT & Communications, Aviation & Engineering Solutions, Power Solutions, Infrastructure & Logistics - to provide safe, innovative, and reliable solutions to meet customers' diverse and complex challenges. With 2,500 team members, IAP operates in more than 110 locations in 27 countries worldwide and maintains offices in the Washington D.C. area, Florida, Maryland, Oklahoma, the United Kingdom, and the Middle East. Learn more atwww.iapws.com.

Manages the proper remediation of DISA and USCYBERCOMs Information Assurance Vulnerability Programs which direct the mitigation of identified hardware and software vulnerabilities is critical to maintaining the integrity of the network in the CJOA-A. Oversees and reports on patching efforts completed by subordinate organizations in accordance with DISAs suspense dates and providing a Plan of Action and Milestones (POA&M) when those dates are not met.

This is a proposal position (contingent upon contract award).

Job Duties & Responsibilities:

  • Successfully scan, and report the status of, all systems in the CJOA-A for IAVA compliance, at a minimum, weekly.

  • Status will be reported to the USFOR-A IAM and USFOR-A IAPM, and as required, briefed to USFOR-A leadership, and IA personnel across the CJOA-A.

  • Non-compliant systems past the IAVA suspense date will be tracked though ITSM.

  • Coordinate with SCCM administrators, network administrators, and PM/POR system administrators, as required to mitigate non- compliant systems.

  • Lead and coordinate Program Managed (PM) and Programs of Record (POR) vulnerability scanning and patching across the CJOA-A.

  • Be proficient with DoD vulnerability management scanning and patching tools (i.e. Retina, ACAS, WSUS, GFi, etc.).


  • Bachelors degree or five years of practical experience

  • At least five (5) years of practical experience working with network security and NETOPs tools.

  • Maintain DoD 8570.1-M compliance for IAT Level III (3) with a computing environment

  • Individual must have a good understanding of networking security principles and their application to a DoD enterprise IT service environment.

  • Excellent interpersonal, verbal and written communication skills

  • Ability to brief high-ranking military officials

  • Proficient in the use of Microsoft Office applications

  • Must have demonstrated experience performing vulnerability management processes, documentation, and improvements.

Location: Afghanistan

Travel:20% across various locations in Afghanistan

Clearance required to start:Top-Secret

Job Location

Classified Location, , Afghanistan

Position Type