Work Schedule - HYBRID - 3 days onsite 2 days remote.
RESPONSIBILITIES:
• Performs RMF Step 4 activities.
• Ensures that the quality of the program, project or task deliverable meets the established standards or metrics.
• Provides Cyber Security guidance and documentation throughout the system development life cycle.
• Provides Cyber Security guidance at meetings, briefings and design reviews and during system development in accordance with prevailing Cyber regulations and policies.
• Supports the PM, SCA, ISSM, and ISSE throughout all phases of the security authorization process.
• Enables Cyber Security system designs that properly mitigate identified threats and vulnerabilities.
• Reviews and approves test and evaluation activities to validate those threats and vulnerabilities are mitigated.
• Performs system security reviews and Assessment and Authorization (A&A).
• Conducts A&A process for IT systems and networks in accordance with the DoD Risk Management Framework process.
• Analyzes and reviews the results of network and system vulnerability scans and be able to validate the implementation of IA Controls in accordance with DoD 8500.2.
• Assists with development and tracking of the POA&M in eMASS.
• Supports RMF Checkpoint meetings.
• Assists with the System Categorization and Risk Assessment Report and consults on the SLCM Strategy.
• Develops the Security Plan, Security Assessment Plan, Security Assessment Report, and Executive Summaries.
• Provides hands-on training and assistance to site teams.
• For special projects serve as a system ISSE and perform associated functions (as opposed to NQV).
• Reports package status and risks weekly.
REQUIRED SKILLS AND EXPERIENCE
• Minimum SECRET clearance.
• Bachelor’s degree in Computer Science, Information Systems/Technology, Engineering, or other related field, or 7 years Cyber Security experience.
• Minimum 3 years’ applied DON Cyber Security, Certification and Accreditation (C&A) or A&A experience.
• Willing to consider someone who is close to obtaining NQV or has completed the application for NQV.
• DoD 8570 IAT II/III or IAM II baseline certification.
• Applied RMF experience.
• Knowledgeable in eMASS, VRAM, ACAS, and HBSS.
• Ability to think independently with minimal oversight, as well as demonstrate exceptional written and oral communications skills.
• Exemplary customer/client management skills and techniques.
• For international travel, a passport is required.
• Attending mandatory, annual training sessions.
• Providing regular status reports to management summarizing progress, challenges, metrics, and recommendations.
• Collaborating with team members to ensure effective communication and coordination.
• Attending recurring team meetings or huddles.
• Assisting in the development of new initiatives.
DESIRED SKILLS AND EXPERIENCE
• Final Navy Qualified Validator (NQV) designation.
• Familiarity with Navy Enterprise networks, such as NMCI and ONE-NET.
• Familiarity with Navy IT sites, systems, and infrastructure.
• Knowledge of eMASSter, STIG Viewer, and Navy Step 4 SOPs.
REQUIRED CLEARANCE
• Active DoD Secret Clearance
EOE M/F/Disability/Vet |
