Cybersecurity Assessment and Authorization Specialist
About The Position
Information Technology Strategies, Inc. is seeking a Cybersecurity Assessment and Authorization Specialist to serve as a cybersecurity Subject Matter Expert (SME) for the Defense Logistics Agency (DLA). This role involves performing the Department of Defense (DOD) cybersecurity process for authorizing information systems and acting as a SME for systems undergoing authorization. The specialist will understand how NIST 800-53 security controls apply to large IT infrastructures like DLA's, which includes various enclaves, applications, and outsourced IT processes. Key responsibilities include determining the severity of vulnerabilities, assessing their impact on system authorization, and briefing senior management on the Risk Management Framework (RMF) process progress and results.
Requirements
- Must possess IT-II security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
- Five (5) years of relevant Risk Management Framework (RMF) and NIST Asses & Analyze (A&A) experience
- DOD cybersecurity experience.
- Experience in assessing security controls and conducting authorization reviews for large, complex organizations.
- Experienced in the general tenets supporting the overall DOD implementation of its authorization process, to include supporting cybersecurity policy, procedures, and processes.
- Knowledgeable in the cybersecurity of emerging technology areas such as Cloud and Industrial Control Systems (ICSs), warehouse execution systems and Operational Technology (OT) infrastructures.
Nice To Haves
- Possesses an understanding of how the security controls identified in the NIST 800-53 apply to the process of assessing and authorizing a large organization’s IT infrastructure such as DLA’s, in which there is a compilation of large and small enclaves, AIS applications and outsourced IT processes.
Responsibilities
- Serve as a cybersecurity Subject Matter Expert (SME) with regards to Assessment and Authorization (A&A) of information systems and all associated cybersecurity policies and procedures.
- Perform a DOD cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization.
- Determine the applicable severity value for an identified vulnerability (e.g., non-compliant security control) and determine the possible ramifications on the system’s current or future authorization.
- Brief senior management on the progress or results of an information system undergoing the Risk Management Framework (RMF) process.
Benefits
- Four Medical/Vision options including an HSA plan
- Dental and Orthodontia plan
- Vision Materials plan
- Paid Life, Short-Term Disability, and Long-Term Disability
- 401K Retirement Program with company contribution
- Paid Vacation, Holidays, Sick Leave, Floating Holidays, Bereavement Leave
- Semi-monthly pay cycle
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
