HiringCafe
Posted 6d ago

Information System Security Officer, Journeyman (Top Secret)

@ Resource Management Concepts
View All Jobs
Cherry Point, North Carolina, United States
$115k-$145k/yrOnsiteFull Time
Responsibilities:Conduct Risk Assessments, Manage Day-to-Day cybersecurity, Prepare RMF documentation
Requirements Summary:Three years of relevant experience; DoD 8570-1Mcertifications required; DoD Top Secret clearance; on-site duties.
Technical Tools Mentioned:RMF, eMASS, ACAS, Stig Viewer, SCAP Compliance Checker, VRAM, Visio, DPRMS
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America.

RMC is hiring an Information Security Analyst for the role of Information Security Systems Officer (ISSO) to support our NAVAIR customer on MCAS Cherry Point, NC. The selected applicant will perform a variety of Information Assurance and Risk Management Framework (RMF) activities, including but not limited to:

  • Serving as an ISSO for a designated RDT&E Enterprise Operations environment.
  • Conduct Risk Assessments for US Navy RMF packages and provide recommendations to improve the Cyber Security posture through risk mitigation steps
  • Managing Day-to-Day cybersecurity activities.
  • Performing duties of the Risk Management Framework (RMF) ISSO role, including:
    • Developing US Navy / USMC RMF authorization packages.
    • Performing validation activities for RMC authorization packages
    • Preparing/Updating RMF documentation.
    • Preparing IATTs and Use Case MFRs as required to support development and testing.
    • Preparing for CyberSafe authorization in parallel with the system authorizations.
    • Establishing Cybersecurity policies IAW security control implementations.
    • Implementing a Cybersecurity Plan.
    • Performing Cyber Tabletop exercises.
    • Performing asset and vulnerability management via VRAM reporting.
    • Perform system security evaluations and review/analyze test results via Assured Compliance Assessment Solution (ACAS).
    • Performing vulnerability assessments and system authorization activities through collaboration with SMEs (System Administrators, Network Admins, Lab Managers, Program Managers, and ISSMs).
    • Performing system security assessments.
    • Evaluating and reporting software IAW DITPR/DADMS requirements.

The applicant must be knowledgeable and proficient in the following:

  • Risk Management Framework (RMF) processes.
  • Cybersecurity/A&A tools (i.e., eMASS, eMASSter, ACAS, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio).
  • IT systems and subsystems.
  • Project management.
  • Written and verbal communications.
  • Ability to work independently and as part of a team in USMC / Navy environments. 
  • The applicant must be familiar with working on classified systems (i.e., SIPRNet) within secure environments.