Cyber Security Specialist (RMF)

About The Position

Requirements

• Education: Bachelor’s degree in Information Systems, Computer Science, Computer Engineering, or another related field
• Certification: Must have a current DoD 8140.01 approved IAT or IAM Level II or Level III Baseline Certification
• Experience: 3+ years of related experience
• Technical skills: Experience conducting RMF process, per NIST SP 800-37 for in-development or existing programs or systems.
• Experience personally drafting RMF products.
• Detailed knowledge of NIST SP 800-53.
• Expert level experience with DoD IT security requirements.
• Expert level experience in Certification and Accreditation (C&A) process and development of Risk Management Framework (RMF) certification packages.
• Security clearance level: active/current TS/SCI clearance is required.
• US citizenship is required due to clearance requirement.

Nice To Haves

• Adaptable to changing circumstances and operational needs.
• Understanding of Department of Defense Military standards.
• RMF Certification or equivalent.

Responsibilities

• Communicate clearly and succinctly both written and orally, and present products and ideas in a business-like manner.
• Communicate complex technical requirements to non-technical personnel; and prepare briefings to senior officials on complex issues.
• Work in dynamic fast-paced environments that require team interaction and coordination of efforts.
• Provide management support to the RMF for NIPR/SIPR & Coalition networks under the purview of the Command.
• Formulate plans and schedules to conduct either portions or all of the RMF process on selected products.
• Develop, update, organize, maintain, and track RMF documentation using information obtained from the customer.
• Provide assessment and authorization (A&A) support in the development of security and contingency plans and conduct complex risk and vulnerability assessments.
• Analyze policies and procedures against DoD security policies and regulations and provide recommendations for closing gaps.
• Recommend system enhancements to improve security deficiencies.
• Interface with both client managers and system users.
• Analyze customer DevSecOps security controls and AI/ML security controls and provide feedback and recommendations as needed.

Benefits

• Comprehensive benefits and wellness packages
• 401K with company match
• Competitive pay and paid time off
• Full flex work weeks where possible
• Vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave
• Short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance