Information System Security Officer, Journeyman (Top Secret)

Resource Management Concepts, Inc.•Cherry Point, NC

13h•Onsite

About The Position

Resource Management Concepts, Inc. (RMC) is seeking an Information Security Analyst to fill the role of Information Security Systems Officer (ISSO) to support their NAVAIR customer on MCAS Cherry Point, NC. The selected applicant will be responsible for a variety of Information Assurance and Risk Management Framework (RMF) activities, serving as an ISSO for a designated RDT&E Enterprise Operations environment. This role involves conducting risk assessments for US Navy RMF packages, managing day-to-day cybersecurity activities, and developing/updating RMF documentation. The position requires performing system security evaluations, vulnerability assessments, and collaborating with SMEs to ensure system authorization. The candidate will also be responsible for evaluating and reporting software according to DITPR/DADMS requirements and preparing for CyberSafe authorization.

Requirements

Knowledgeable and proficient in Risk Management Framework (RMF) processes.
Knowledgeable and proficient in Cybersecurity/A&A tools (i.e., eMASS, eMASSter, ACAS, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio).
Knowledgeable and proficient in IT systems and subsystems.
Knowledgeable and proficient in Project management.
Knowledgeable and proficient in Written and verbal communications.
Ability to work independently and as part of a team in USMC / Navy environments.
Familiarity with working on classified systems (i.e., SIPRNet) within secure environments.
A bachelor's degree and a minimum of three (3) years of relevant experience are required. An associate degree plus four (4) additional years of relevant work experience or High School Diploma plus (6) additional years of relevant work experience may be substituted for a bachelor’s degree.
Must meet the certification and clearance requirements established IAW the DoD Manual 8570-1M.
Must have one of the following certifications to start: CAP / CGRC, SecurityX CE, GSLC, CISM, CISSP.
An active DoD Top Secret clearance is required to start.
Must meet eligibility requirements for access to classified information.

Nice To Haves

Journeyman-level position, the selected candidate will be expected to perform all functional duties independently.

Responsibilities

Serving as an ISSO for a designated RDT&E Enterprise Operations environment.
Conduct Risk Assessments for US Navy RMF packages and provide recommendations to improve the Cyber Security posture through risk mitigation steps
Managing Day-to-Day cybersecurity activities.
Developing US Navy / USMC RMF authorization packages.
Performing validation activities for RMC authorization packages
Preparing/Updating RMF documentation.
Preparing IATTs and Use Case MFRs as required to support development and testing.
Preparing for CyberSafe authorization in parallel with the system authorizations.
Establishing Cybersecurity policies IAW security control implementations.
Implementing a Cybersecurity Plan.
Performing Cyber Tabletop exercises.
Performing asset and vulnerability management via VRAM reporting.
Perform system security evaluations and review/analyze test results via Assured Compliance Assessment Solution (ACAS).
Performing vulnerability assessments and system authorization activities through collaboration with SMEs (System Administrators, Network Admins, Lab Managers, Program Managers, and ISSMs).
Performing system security assessments.
Evaluating and reporting software IAW DITPR/DADMS requirements.