Information System Security Officer / Engineer, Journeyman (Top Secret)

Resource Management Concepts, Inc.

9h•Onsite

About The Position

Resource Management Concepts, Inc. (RMC) is seeking an Information Security Analyst for the role of Information Security Systems Officer (ISSO) to support a NAVAIR customer in Patuxent River, MD. This Journeyman-level position requires the selected applicant to perform a variety of Information Assurance and Risk Management Framework (RMF) activities independently. Key responsibilities include serving as an ISSO for a designated NAVAIR program, conducting risk assessments for US Navy RMF packages, managing day-to-day cybersecurity activities, and developing RMF authorization packages. The role also involves preparing and updating RMF documentation, establishing cybersecurity policies, implementing a Cybersecurity Plan, and performing vulnerability management and system security assessments. The applicant will collaborate with various SMEs and must be familiar with working on classified systems within secure environments.

Requirements

Knowledgeable and proficient in Risk Management Framework (RMF) processes
Knowledgeable and proficient in Cybersecurity/A&A tools (i.e., eMASS, eMASSter, ACAS, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio)
Knowledgeable and proficient in IT systems and subsystems
Knowledgeable and proficient in Rotary Aircraft systems
Knowledgeable and proficient in Secure Operating System images
Knowledgeable and proficient in Project management
Knowledgeable and proficient in Written and verbal communications
Ability to work independently and as part of a team in NAVAIR environments
Familiar with working on classified systems (i.e., SIPRNet) within secure environments
A bachelor's degree and a minimum of three (3) years of relevant experience are required
An associate degree plus four (4) additional years of relevant work experience may be substituted for a bachelor’s degree
High School Diploma plus (6) additional years of relevant work experience may be substituted for a bachelor’s degree
Meet the certification and clearance requirements established IAW the DoD Manual 8570-1M
Must have one of the following certifications to start: CAP / CGRC, SecurityX CE, GSLC, CISM, CISSP
An active DoD Top Secret clearance is required to start
May be subjected to a security investigation and must meet eligibility requirements for access to classified information

Responsibilities

Serving as an ISSO for a designated NAVAIR program
ACAS scanner build and deployment
Conduct Risk Assessments for US Navy RMF packages and provide recommendations to improve the Cyber Security posture through risk mitigation steps
Managing Day-to-Day cybersecurity activities
Performing duties of the Risk Management Framework (RMF) ISSO role
Developing US Navy RMF authorization packages
Preparing/Updating RMF documentation
Preparing IATTs and Use Case MFRs as required to support development and testing
Preparing for CyberSafe authorization in parallel with the system authorizations
Establishing Cybersecurity policies IAW security control implementations
Implementing a Cybersecurity Plan
Performing Cyber Tabletop exercises
Performing asset and vulnerability management via VRAM reporting
Performing vulnerability assessments and system authorization activities through collaboration with SMEs (System Administrators, Network Admins, Lab Managers, Program Managers, and ISSMs)
Performing system security assessments
Evaluating and reporting software IAW DITPR/DADMS requirements
Perform all functional duties independently