Information Assurance - Journeyman

Athena Technology Group•Fort Gordon, GA

4d•Onsite

About The Position

Athena Technology Group (ATG) is seeking an experienced Information Assurance Analyst (Journeyman) to support U.S. Army Cyber Command (ARCYBER) operations at Fort Eisenhower, Georgia. The selected candidate will support Risk Management Framework (RMF) activities, Assessment and Authorization (A&A) processes, cybersecurity compliance efforts, and security documentation requirements for mission-critical systems operating within DoD environments. The ideal candidate will have hands-on experience working with Information System Security Managers (ISSMs), Information System Security Officers (ISSOs), Security Control Assessors (SCAs), and government stakeholders throughout the RMF lifecycle.

Requirements

One of the following combinations is required: High School Diploma and 11–14 years of relevant experience; OR Bachelor's Degree and 5–10 years of relevant experience; OR Master's Degree and 3–6 years of relevant experience.
Experience supporting DoD cybersecurity programs.
Experience working with RMF processes from initiation through authorization and continuous monitoring.
Experience developing and maintaining POA&M documentation.
Experience supporting ATO package development and maintenance.
Experience using eMASS.
Experience working with ACSA or similar cybersecurity compliance tools.
Experience collaborating with ISSOs, ISSMs, and Security Control Assessors.
DoD 8570.01-M IAT Level II Certification (Security+, CCNA Security, CySA+, or equivalent).
Active Top Secret/SCI Clearance with CI Polygraph.
U.S. Citizenship required.

Nice To Haves

Experience supporting ARCYBER, Cyber Mission Force (CMF), or other DoD cyber organizations.
Familiarity with NIST 800-53 security controls.
Experience supporting continuous monitoring programs.
Strong technical writing and documentation skills.
Experience conducting cybersecurity assessments and audits.

Responsibilities

Support all phases of the DoD Risk Management Framework (RMF) process.
Develop, maintain, and update Authorization to Operate (ATO) packages.
Create and manage Plans of Action and Milestones (POA&M) documentation.
Conduct cybersecurity risk assessments and security control evaluations.
Analyze vulnerabilities and provide recommendations for mitigating risks and compliance deficiencies.
Develop security documentation, reports, briefings, and status updates.
Maintain system authorization packages within eMASS.
Utilize ACSA and other cybersecurity compliance tools to support accreditation activities.
Coordinate with ISSMs, ISSOs, SCAs, system administrators, and program stakeholders.
Assist with security control implementation, validation, and continuous monitoring activities.
Support audit preparation and compliance reporting efforts.
Track remediation activities and ensure timely closure of findings.