Information Assurance and Security, Associate

The position involves Cyber Protection, Assessment and Authorization, and Risk Management Framework (RMF) responsibilities. The role provides cybersecurity functional support for assessments, authorizations, and documentation of Enterprise-fielded systems managed by NETCOM HQ. This includes using the Enterprise Mission Assurance Support Service (eMASS) to record RMF activities such as control implementation of all applicable security controls as identified via information system security categorization in accordance with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 and Committee on National Security Systems Instructions (CNSSI) 1253. The number of families and controls will vary depending on the security categorization, the application of overlays (privacy, classified, intel, etc.) and any security control tailoring. The position requires adherence to the DoD cybersecurity policy requirements set forth in DoDI 8500.01, 'Cybersecurity,' and DoDI 8510.01, 'Risk Management Framework (RMF) for DoD Information Technology (IT)' and their successors. Additionally, the role involves providing personnel with knowledge in DoD security hardening, collection, and assessment tools, and expertise with security architectures, firewalls, and network access. The candidate must possess and retain knowledge of the RMF Knowledge Service, the DoD's official site for enterprise RMF policy and implementation guidelines, and review any RMF activities on behalf of NETCOM ensuring adherence to the operational ETPs and Operations Orders hosted on the US Army Component Workspace.