Information Assurance Specialist (Mid-Level)

About The Position

Requirements

• Active Secret Clearance
• IAT Level II certification (CompTIA Security+ CE required)
• Minimum 3+ years of experience in information assurance, cybersecurity, or related field
• Experience supporting DoD RMF processes and documentation
• Experience with vulnerability scanning tools (e.g., ACAS, SCAP, Fortify)
• Familiarity with DISA STIGs and security compliance requirements
• Knowledge of NIST SP 800-53 security controls
• Strong analytical and problem-solving skills
• Strong attention to detail and documentation accuracy

Nice To Haves

• Experience supporting USTRANSCOM or DoD systems
• Familiarity with eMASS or similar RMF tools
• Experience with secure application development practices
• Experience working in DevSecOps environments
• Familiarity with CI/CD-integrated security practices
• Experience supporting audit readiness or compliance activities (FISCAM/FIAR)

Responsibilities

• Support implementation and maintenance of RMF security controls in accordance with DoD standards
• Assist in development and maintenance of RMF documentation, including SSPs, POA&Ms, and control evidence
• Conduct and support vulnerability scanning and analysis using tools such as ACAS, SCAP, or similar
• Track and manage security findings and remediation efforts
• Collaborate with developers and system administrators to remediate vulnerabilities and implement security controls
• Ensure compliance with DISA STIGs and security configuration requirements
• Support continuous monitoring activities, including security assessments and reporting
• Assist in preparation and maintenance of ATO/ATC/IATT packages
• Analyze security scan results and provide recommendations for mitigation
• Maintain and update security documentation and artifacts in tools such as eMASS
• Support incident response activities and security investigations as needed
• Ensure security practices are integrated into the Software Development Life Cycle (SDLC)