Cyber Security Specialist (RMF)

About The Position

Requirements

• Bachelor’s degree in Information Systems, Computer Science, Computer Engineering, or another related field
• Must have a current DoD 8140.01 approved IAT or IAM Level II or Level III Baseline Certification (i.e., CompTIA Sec + CE)
• 3+ years of related experience
• Experience conducting RMF process, per NIST SP 800-37 for in-development or existing programs or systems.
• Experience personally drafting RMF products.
• RMF Certification or equivalent.
• Detailed knowledge of NIST SP 800-53.
• Expert level experience with DoD IT security requirements.
• Expert level experience in Certification and Accreditation (C&A) process and development of Risk Management Framework (RMF) certification packages.
• Active/current TS/SCI clearance required
• US citizenship required due to the required TS/SCI clearance

Nice To Haves

• Adaptable to changing circumstances and operational needs.
• Understanding of Department of Defense Military standards.

Responsibilities

• Communicate clearly and succinctly both written and orally, and present products and ideas in a business-like manner.
• Communicate complex technical requirements to non-technical personnel; and prepare briefings to senior officials on complex issues.
• Work in dynamic fast-paced environments that require team interaction and coordination of efforts.
• Provide management support to the RMF for NIPR/SIPR & Coalition networks under the purview of the Command.
• Formulate plans and schedules to conduct either portions or all of the RMF process on selected products.
• Develop, update, organize, maintain, and track RMF documentation using information obtained from the customer.
• Provide assessment and authorization (A&A) support in the development of security and contingency plans and conduct complex risk and vulnerability assessments.
• Analyze policies and procedures against DoD security policies and regulations and provide recommendations for closing gaps.
• Recommend system enhancements to improve security deficiencies.
• Interface with both client managers and system users.
• Analyze customer DevSecOps security controls and AI/ML security controls and provide feedback and recommendations as needed.

Benefits

• 401K with company match
• competitive pay
• paid time off
• variety of medical plan options
• dental plan options
• a vision plan
• full flex work weeks where possible
• vacation
• sick and personal time
• holidays
• paid parental leave
• military leave
• bereavement leave
• jury duty leave
• short and long-term disability benefits
• life insurance
• accidental death and dismemberment insurance
• personal accident insurance
• critical illness insurance
• business travel and accident insurance