Work Schedule - HYBRID - 3 days onsite 2 days remote.
RESPONSIBILITIES:
• Performs RMF Step 4 activities. • Ensures that the quality of the program, project or task deliverable meets the established standards or metrics. • Provides Cyber Security guidance and documentation throughout the system development life cycle. • Provides Cyber Security guidance at meetings, briefings and design reviews and during system development in accordance with prevailing Cyber regulations and policies. • Supports the PM, SCA, ISSM, and ISSE throughout all phases of the security authorization process. • Enables Cyber Security system designs that properly mitigate identified threats and vulnerabilities. • Reviews and approves test and evaluation activities to validate those threats and vulnerabilities are mitigated. • Performs system security reviews and Assessment and Authorization (A&A). • Conducts A&A process for IT systems and networks in accordance with the DoD Risk Management Framework process. • Analyzes and reviews the results of network and system vulnerability scans and be able to validate the implementation of IA Controls in accordance with DoD 8500.2. • Assists with development and tracking of the POA&M in eMASS. • Supports RMF Checkpoint meetings. • Assists with the System Categorization and Risk Assessment Report and consults on the SLCM Strategy. • Develops the Security Plan, Security Assessment Plan, Security Assessment Report, and Executive Summaries. • Provides hands-on training and assistance to site teams. • For special projects serve as a system ISSE and perform associated functions (as opposed to NQV). • Reports package status and risks weekly.
REQUIRED SKILLS AND EXPERIENCE
• Minimum SECRET clearance. • Bachelor’s degree in Computer Science, Information Systems/Technology, Engineering, or other related field, or 7 years Cyber Security experience. • Minimum 3 years’ applied DON Cyber Security, Certification and Accreditation (C&A) or A&A experience. • Willing to consider someone who is close to obtaining NQV or has completed the application for NQV. • DoD 8570 IAT II/III or IAM II baseline certification. • Applied RMF experience. • Knowledgeable in eMASS, VRAM, ACAS, and HBSS. • Ability to think independently with minimal oversight, as well as demonstrate exceptional written and oral communications skills. • Exemplary customer/client management skills and techniques. • For international travel, a passport is required. • Attending mandatory, annual training sessions. • Providing regular status reports to management summarizing progress, challenges, metrics, and recommendations. • Collaborating with team members to ensure effective communication and coordination. • Attending recurring team meetings or huddles. • Assisting in the development of new initiatives.
DESIRED SKILLS AND EXPERIENCE
• Final Navy Qualified Validator (NQV) designation. • Familiarity with Navy Enterprise networks, such as NMCI and ONE-NET. • Familiarity with Navy IT sites, systems, and infrastructure. • Knowledge of eMASSter, STIG Viewer, and Navy Step 4 SOPs.
REQUIRED CLEARANCE
• Active DoD Secret Clearance
EOE M/F/Disability/Vet |