STIG Writer-Senior (Current Contract)

We are seeking a highly skilled and proactive Senior STIG Writer to develop, maintain, and support security configuration guidance in alignment with DoD and federal cybersecurity standards.

This position blends technical expertise with advanced writing and documentation skills, enabling the creation of authoritative security guidance that supports compliance, strengthens cybersecurity posture, and drives mission success. The candidate will design and execute test plans, validate configuration settings, identify vulnerabilities, and translate technical findings into actionable security recommendations. The role also requires the ability to collaborate with vendors, engineering teams, and DoD stakeholders to ensure security requirements are clear, practical, and enforceable.

This is a remote position; however, individuals must reside within a commutable distance of Chambersburg, PA to support occasional onsite meetings as required.

Responsibilities Include:

• Develop, maintain, update and support security configuration guidance based on applicable DoD policies, DoD Instructions and Manuals, NIST 800-53 controls, CNSS-1253 baselines, and best business practices.
• Develop test plans, test and document configuration settings.
• Install products in test lab, analyze product features and functions, test configurable settings.
• Identify vulnerabilities in software, hardware and network products.
• Identify corresponding methods of mitigating or eliminating vulnerabilities.
• Create and conduct briefings outlining test findings.
• Perform ad-hoc risk analysis.
• Represent team on working group assignments and consensus development efforts.
• Respond to inquiries related to NIST 800-53 control requirements.
• Other duties as assigned.

Required Skills, Qualifications and Experience:

• Bachelor's degree or equivalent experience.
• 10+ years of relevant work experience.
• Must have and maintain a current DoD Secret clearance.
• Must have and maintain a current DoD IAT Level II (e.g., Security+ CE or equivalent) certification.
• Hands-on experience with applications, operating systems and/or networking equipment.
• Knowledge of different types of malicious software operation, common attack vectors, best security practices and security risk identification and mitigation.
• Knowledge/experience with vulnerability testing tools and their operation.
• Knowledge of NIST 800-53 controls coupled with ability to evaluate security controls and apply them to commercial product features, functions and settings.
• Ability to work with vendors and drive product improvements based on testing results.
• Proficiency with MS Office products including Excel and Word.
• Experience with creating and conducting PowerPoint presentations to leadership.
• Must have the ability to work in a team environment, the desire to learn and the drive to succeed.

Preferred Qualifications:

• Preferred Certification: 8140.1: Security+/CASP+ CE CCSP (Certified Cloud Security Professional) - CSSP Analyst / Infrastructure Support (cloud focus) CompTIA Cloud+ - CSSP Infrastructure Support baseline cert CSSLP (Certified Secure Software Lifecycle Professional).

Work Environment and Physical Demand:

• Prolonged periods of sitting and working at computer.

Compensation: $110,000 - $125,000

This posting is part of a pipeline for future opportunities supporting the current PDOS contract. Employment is contingent upon position availability and government customer approval. AGE Solutions is actively engaging talent and encourages incumbents and new candidates to express interest to be considered if/when opportunities may become available.