Draft, review, and update Risk Management Framework (RMF) artifacts required for achieving an Authority to Operate (ATO) for emerging systems
Developing and updating the system security system control traceability matrix (SCTM), the system security plan (SSP), managing and controlling changes to the system, assessment and authorization (A&A) package and assessing the security impact of those changes
Write System Security Plans (SSP), Plan of Actions & Milestones (POA&M), Continuous Monitoring Plan, Risk Assessments, Privacy Impact Analyses (PIA), and supporting documentation for systems subject to NIST SP 800-53
Lead Security Assessment and Authorization processes and procedures
Conduct technical training and product briefings with customers, vendors, and company representatives and perform supervisory responsibilities, as required, by company leadership
Report all cybersecurity incidents to the program Information Systems Security Managers (ISSM) through reports and briefings.
Troubleshoot technical problems and issues, determine technical solutions in accordance with product and customer specifications, and recommend actions to company or customer representatives for coordinative product solutions
Provide support for implementing and enforcing information systems security policies, standards, and methodologies
Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information
Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades
Evaluate security solutions to ensure they meet security requirements for processing classified information
Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave.

Requirements

Must have had an active DoD TS/SCI clearance within the last 24 months
Ability to obtain and maintain DoD TS/SCI and relevant SAP/SAR Clearance
Experience with any combination of the following: cybersecurity, network security architecture, system hardening, auditing/compliance methods, Information Technology, and/or systems security engineering concepts such as topology, protocols, components, and/or principles (e.g., application of defense-in-depth)
Experience supporting cybersecurity compliance as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications
Strong understanding and experience with the Risk Management Framework, JSIG, RMF Bodies of Evidence
Excellent oral and written communication skills, collaboration skills, and experience in presenting cybersecurity issues to all levels of management, as well as non-technical staff
Strong work ethic, demonstrated self-starter with the ability to work in a fast paced, team-oriented environment
9 years relevant experience with Bachelors in related field; 7 years relevant experience with Masters in related field; 4 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 13 years relevant experience.

Benefits

📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Risk Management Framework (RMF)System Security Plans (SSP)Plan of Actions & Milestones (POA&M)Continuous Monitoring PlanRisk AssessmentsPrivacy Impact Analyses (PIA)cybersecuritynetwork security architecturesystem hardeningauditing/compliance methods

Soft Skills

oral communicationwritten communicationcollaborationpresentation skillsstrong work ethicself-starterteam-oriented

Certifications

DoD TS/SCI clearanceSAP/SAR Clearance