Expertise and Functions
- Assist in the development of security documentation including System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, and other required system security engineering artifacts.
- Support RMF Authorization and Accreditation (A&A) activities, ensuring compliance with DoD and Air Force cybersecurity policies.
- Manage system user accounts, ports/protocols, PKI requirements, and access control lists.
- Implement and track system security updates, configurations, and vulnerability remediation in accordance with DoD requirements.
- Conduct risk and vulnerability assessments; recommend security policies, contingency plans, and disaster recovery procedures.
- Participate in system/network design to ensure alignment with security policies.
- Provide leadership in analyzing and integrating cybersecurity requirements into system design and operations.
- Review and assess the implementation of RMF security controls across system architecture, documentation, and design artifacts.
- Collaborate with stakeholders to ensure RMF A&A approval by all Authorizing Officials.
- Maintain and audit databases for classified information, visits, and clearances.
- Support classified material handling, accountability, and compliance with security classification guides.
- Develop and deliver security awareness training and education programs.
- Prepare and review acquisition security documentation and ensure compliance with CDRLs.
- Plan and implement security-related surveys, assessments, and evaluations throughout the program life cycle.
- Other duties as assigned
Requirements
Education/Training:
- Bachelor’s Degree preferred
- Security +
Experience:
- 7+ years of experience in a related field required
- 3+ years working in the DoD sector
- Understanding of cybersecurity in DoD cloud infrastructure.
- Knowledge of Agile methodologies including CI/CD, DevSecOps, and DevOps.
- Experience with systems analysis and eMASS
- Strong ability to communicate technical topics effectively in both written and verbal forms
- STIG compliance
- Risk Management Framework (RMF) implementation and documentation.
- DoD cybersecurity policies and compliance.
- System Authorization and Accreditation (A&A) processes.
- DoD cloud infrastructure security.
- Agile development methods including CI/CD, DevSecOps, and DevOps.
- Security risk, vulnerability, and contingency planning.
- PKI management and access control.
- Classified material handling and accountability.
- Strong verbal and written communication skills for both technical and non-technical audiences.
- Ability to collaborate with government, contractor, and industry stakeholders.
- Effective problem-solving and analytical thinking.
- Ability to work independently and manage multiple priorities in a fast-paced environment.
- Adaptability to evolving program requirements and security challenges.
Security:
- Must be a US citizen
- Must have an active Secret clearance
Physical Requirements:
- Able to occasionally reach with hands and arms
- Prolonged periods of computer screen use, while sitting or standing at a desk
- Adhere to safety protocols when in work areas requiring use of PPE (e.g. eyewear, gloves, masks, hearing protection, steel toed shoes, etc.)
- Able to safely lift and carry up to 20 pounds at a time
Benefits
- Health Care Plan (Medical, Dental & Vision)
- Retirement Plan (401k, IRA)
- Life Insurance (Basic, Voluntary & AD&D)
- Paid Time Off (Vacation, Sick & Public Holidays)
- Short Term & Long Term Disability
- Training & Development
- Wellness Resources
Salary:
The projected salary range for this position is $125,000 - $148,000. This is not a guarantee of compensation, rather actual salary will be based on experience, qualifications, and applicable certifications or degrees held. Offered salary may fall outside of this range.