Validator/Vulnerability Management Lead/Information System Security Officer

Kairos-posted 3 days ago
$100,000 - $145,000/Yr
Full-time • Mid Level
Onsite • Pax River, MD
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

KAIROS, Inc is searching for an energetic, experienced and highly motivated Information System Security Officer at the Journeyman level to join our team. This position will be onsite at Patuxent River Naval Air Station in Lexington Park, MD with teleworking opportunity. Established in July 2013, KAIROS, Inc. is a growing Woman Owned Small Business (WOSB) providing full life cycle Cybersecurity, Program Management, Systems Engineering, and Training and Education services focused on optimizing customers’ program performance and mission through proven methodologies and ethical practices. Our headquarters is in California, MD near Naval Air Station Patuxent River. We offer competitive salaries and benefits with outstanding growth potential. Overview: Validator/Vulnerability Management Lead/Information System Security Officer (ISSO) to support the Unmanned Carrier Aviation Program Office (PMA-268) at Patuxent River Naval Air Station in Lexington Park, MD. PMA 268 is responsible for the MQ-25 Stingray unmanned air system. Telework available.

  • Assess and validate PMA-268 RMF packages (Authorizations to Operate (ATOs) and Interim Authorizations to Test (IATTs), to include but not limited to:
  • Coordinate development of the Security Assessment Plan (SAP) with Integrated Product Team (IPT) SSE and system ISSO
  • Submit SAP for approval
  • Execute the SAP
  • Provide a summary of failed controls in Enterprise Mission Assurance Support Service (eMASS) (Risk Assessment)
  • Complete the Security Assessment Report (SAR)
  • Provide POA&M update recommendations to the PMA/IPT based on assessment results
  • Ensure traceability of all vulnerabilities from raw assessment results to the POA&M
  • Support Continuous Monitoring (ConMon) activities (e.g. annual security reviews, system/changes/ Memorandums for the Record (MFRs))
  • Create consolidated list of mitigation statements for POA&Ms (unclassified) to assist ISSOs with established mitigation statements for common non-compliant security controls
  • Establish and execute a PMA-268 vulnerability management program, to include developing guidance for VRAM record creation and management.
  • Develop a PMA Vulnerability and Patch Management Policy
  • Coordinate development of System level Vulnerability and Patch Management Plans (VPMP)
  • NAVAIR Rapid Response Lead for PMA-268
  • Attend Rapid Response meetings
  • Coordinate consolidated PMA-268 responses to Orders received (i.e. EXORD, OPORD, TASKORD)
  • Monitor the NAVAIR Vulnerability Management Channel for notifications daily
  • Maintain the PMA-268 Cyber Directive Status tracker
  • Create and maintain a Cyber Directives tracker on SIPR summarizing the orders.
  • Manage PMA-268 Portfolio VRAM records
  • Support PMA-268 Cyber Lead in execution of the PMA-268 Cybersecurity Program
  • Provide assistance and guidance to PMA-268 ISSOs
  • Update and sustain PMA-268 RMF Training Slides
  • Latest RMF guidance
  • RMF roles and responsibilities flow chart
  • Assist in the development of eMASS Common Control Packages (CCPs)
  • Develop RMF security control family templates
  • Develop PMA Incident Response Plan
  • Coordinate and provide oversight for all MOU/ISA efforts required in support of cyber authorizations or system use.
  • Demonstrated experience in an area of engineering expertise is required.
  • Bachelor’s degree in technical or scientific field from an accredited college or university.
  • Three (3) years of recent and relevant experience.
  • This position is subject to a government security investigation and must meet eligibility requirements for access to classified information.
  • In order to complete the requirements for government security clearance investigation you must be a U.S. Citizen and be able to complete the full background investigation.
  • This position requires an Active Secret Security Clearance.
  • Medical Coverage
  • Employer Paid Dental, Vision, Basic Life/AD&D, Short-Term/Long-Term Insurance
  • Health Savings Account with Contribution by Employer
  • 401K Plan with Employer Matching
  • Annual Discretionary Bonuses
  • Paid Time Off
  • Eleven (11) Paid Holidays
  • Certification reimbursement program
  • Tuition Reimbursement Program
  • Paid Parental Leave
  • Employee Assistance Program (EAP)
  • Rewards and recognition programs
  • Community outreach events through our KAIROS Kares group
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service