Senior RMF Specialist/ISSO

About The Position

Requirements

• BA/BS with a minimum 5+ years of hands-on experience dedicated to applying RMF to complex DoD IT systems.
• Possess current, industry-standard certifications relevant to their specific duties (e.g., CompTIA Security+, CCNA, RHCSA, MCSA). Certifications must meet DoD 8570/8140 requirements for their assigned role (e.g., IAT Level II).
• Demonstrated mastery of eMASS, vulnerability scanning tools (e.g., ACAS/Nessus), COMSEC, and security compliance checkers (e.g., SCAP).
• Top Secret/SCI security clearance.

Responsibilities

• Lead all aspects of the RMF process, from system categorization and security control selection to implementation and assessment.
• Develop, maintain, and update all required RMF documentation, including the System Security Plan (SSP), Security Assessment Report (SAR), and Plan of Action & Milestones (POA&M).
• Manage the system's security posture within the Enterprise Mission Assurance Support System (eMASS), ensuring all data is accurate and up to date.
• Implement and manage a robust continuous monitoring strategy to actively assess security control effectiveness, track vulnerabilities, and manage configuration changes.
• Serve as the primary security advisor to the system owner and liaise with the Authorizing Official (AO) and other key stakeholders to ensure a clear understanding of system risks and compliance status.

Benefits

• Paid parental leave
• Immediate vesting in our 401(k)
• Medical, Dental & Vision Insurance
• Flexible Spending Accounts
• Short-Term and Long-Term Disability Insurance
• Life Insurance
• Paid Time Off & Holidays
• Earned Bonuses & Awards
• Professional Training Reimbursement
• Employee Assistance Program