Information Security Risk Specialist

About The Position

Requirements

• 3+ years of experience leading and executing Navy Risk Management Framework (RMF), including full lifecycle implementation across all RMF steps, application of Navy SOPs and cybersecurity directives, and ownership of Plans of Action and Milestones (POA&Ms)
• Experience with eMASS and ACAS, including analysis and prioritization of scan results, development and maintenance of hardware and software inventories, and vulnerability management using SCAP, VRAM and HBSS
• Experience with reviewing, interpreting, and enforcing Security Technical Implementation Guides (STIGs) using STIG Viewer
• Experience with developing and supporting Security Assessment Plans (SAPs) and Security Assessment Reports (SARs) in alignment with Navy RMF requirements
• Knowledge of Ports, Protocols, and Services Management (PPSM)
• Ability to operate in a structured and compliance-driven environment while executing established cybersecurity processes with minimal supervision
• Secret clearance
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Data Science, or Software Engineering
• DoD 8140, 752- Cyber Policy and Strategy Planner, Intermediate Certification

Nice To Haves

• Top Secret clearance
• Master’s degree

Responsibilities

• Assist military leaders with discovering their cyber risks
• Understand applicable policies
• Develop a mitigation plan
• Gather technical and personnel details from subject matter experts to help with the assessment of the entire threat landscape
• Guide your client through a plan of action with presentations, white papers, and milestones
• Translate security concepts so they can make the best decisions to secure their critical systems

Benefits

• health
• life
• disability
• financial
• retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program