RMF Engineer
2 weeks ago
Position Responsibilities:
- Develop and deliver implementation plans, risk assessments, research, and analysis supporting RMF and continuous monitoring based on Government regulations, plans, and direction.
- Provide monthly status reports and track the execution of Army RMF, including compliance with authorizations, system assessments, and Plan of Actions & Milestones (POA&M) expirations and executions.
- Collaborate with automated RMF tools such as eMASS and APMS, following the Federal Information Security Management Act (FISMA), DoD Directive 8500.01, NIST Special Publication 800-53, and CNSSI 1253 guidelines.
- Ensure compliance with DoD Cybersecurity (CS) policy requirements outlined in DoDI 8500.01, DoDI 8510.01, and their successors.
- Integrate with Security Requirements Guide (SRG) and Security Technical Implementation Guides (STIG) development teams to include emerging technologies in the STIG roadmap process.
- Conduct onsite visits and surveys to address security compliance and technical analysis, producing comprehensive reports and recommendations for improvements and enhancements.
- Identify risk areas through implementation shortfalls and develop plans to recommend policy updates, addressing widespread issues and exceptions to policy.
- Participate in working groups, forums, and direct interactions to gather information for research and analysis in support of RMF and continuous monitoring.
- Standardize forms and integrate with continuous Authorization to Operate (cATO) and RMF emerging technology efforts to reduce the burden on mission owners while maintaining security.
- Provide guidance on addressing risks from a mission and business process perspective, ensuring Army CS initiatives align with applicable laws and regulations.
- Support the integration of Operational Technology (OT) into the Army's IT and Network Operations CS capability by tracking emerging tech and working with mission owners.
- Conduct outreach and education on data value and categorization, integrating with various Army data owners to achieve unified end-to-end multi-element asset capabilities.
- Support the Commercial Temporary Exception to Policy (C-TEP) program, creating standardized templates and workflow automation.
- Track tasks and requirements aligned with the Army Data Strategy and Army Directives, representing Army security needs in future strategy and directives.
Position Requirements:
- Must hold a Secret Clearance.
- Strong preference for Army Background / Sr. NCO or Mid-Level Officer.
- Bachelor's degree in a relevant field or equivalent experience.
- 10+ years of proven experience in RMF policy creation, risk assessments, and cybersecurity compliance.
- In-depth knowledge of RMF 2.0, FISMA, NIST publications, and DoD cybersecurity policies.
- IAM Level III certification or equivalent cybersecurity certifications.
- Excellent communication and collaboration abilities to work with various stakeholders.
- Ability to conduct onsite visits and technical analysis.
- Understanding of emerging technologies and their impact on cybersecurity.
-
Arlington, United States Logistics Management Institute Full timeCyber Security Specialist/Risk Management Framework (RMF) - Clearance Required Logistics Management Institute With a legacy of solving the government’s most complex challenges and an outcome-driven model to execute above expectation, LMI transforms missions with solutions that define the new speed of possible. View company page LMI is seeking a Cyber...
-
Cloud Engineer- Hybrid- Top Secret Security Clearance Required with Security Clearance
Found in: Dice One Red US C2 - 2 weeks ago
arlington virginia, United States Zachary Piper Solutions, LLC Full timeZachary Piper Solutions is seeking a Cloud Engineer to support DISA's Cloud Brokerage Program, which is designed to allow various DoD agencies to utilize DISAs Cloud solution to host their applications. The Cloud Engineer will be tasked with working with the various agencies and programs to act as a solutions consultant to determine which is the best cloud...
-
Information Systems Security Officer
1 week ago
Arlington, United States GCyber Full timeGCyber is hiring an Information Systems Security Officer (ISSO), to support the Office of Military Commissions (OMC) as part of DISA’s Joint Service Provider (JSP) Service Delivery contract. Although this position resides in the National Capital Region (NCR), there may be a requirement to travel to Naval Station Guantanamo Bay (NSGB), Cuba,...
-
Information Systems Security Officer
Found in: Dice One Red US C2 - 2 weeks ago
Arlington, United States GCyber Full timeGCyber is hiring an Information Systems Security Officer (ISSO), to support the Office of Military Commissions (OMC) as part of DISA's Joint Service Provider (JSP) Service Delivery contract. Although this position resides in the National Capital Region (NCR), there may be a requirement to travel to Naval Station Guantanamo Bay (NSGB), Cuba, occasionally. As...
-
Senior SharePoint Developer
1 week ago
Arlington, United States ASRC Federal Holding Company Full timeJob DescriptionJOB DESCRIPTION: Team Broadleaf is seeking an experienced Software Developer - Senior that works independently designing and engineering new software products or major enhancements to existing software. May lead a team in design of highly complex software systems. Acts as highest-level technical expert, addressing problems of systems...
-
IT Specialist
Found in: beBee jobs US - 13 hours ago
Pentagon, Arlington, United States Department Of The Army Full timeSummary About the Position: This position is in the Defense Civilian Intelligence Personnel System (DCIPS). Employees occupying DCIPS positions are in the Excepted Service and must adhere to U.S. Code, Title 10, as well as Department of Defense Instruction This position is located at the .This position is located at the Office of the Chief of Staff of the...
-
Information Systems Security Officer
3 weeks ago
Arlington, United States Agil3 Technology Solutions (A3T) Full timeJob DescriptionJob DescriptionAs the Information Systems Security Officer (ISSO) (NCR), you will act as a model of customer service excellence to all organizational staff members. You will be responsible for participating with a team of highly qualified professionals and interacting daily with the customer to ensure productivity and resolve IT issues that...
-
Security Systems Specialist
1 week ago
Arlington, United States Super Systems Inc Full timeThis role is hybrid - ONSITE 1x a week - 4x a week REMOTE! **Responsibilities**: - Lead mitigation / remediation process, following approved corrective action plans - Support program to ensure appropriate implementation of the NIST Security Framework through the lifecycle of the system including but not limited to the pre-security assessment tasks and...
-
Cyber Engineer
3 days ago
Arlington, United States Solutions³ LLC Full timeJob DescriptionJob DescriptionCyber Engineer - Senior II - SCE04Solutions3 is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. Solutions3 is seeking an...
-
Information System Security Officer
7 days ago
Arlington, United States KeenLogic Full timeJob DescriptionJob DescriptionPosition: ISSO IKeenLogic is seeking to hire an Information System Security Officer (ISSO) to join our team at the Drug Enforcement Administration. The ISSO will serve primarily on the Cybersecurity Service Security Team. This role ensures the appropriate operational security posture is maintained for information systems or...
-
Senior Systems Administrator with Security Clearance
Found in: Dice One Red US C2 - 4 days ago
Arlington, United States SAIC Full timeDescription The Senior Systems Administrator is a crucial part in SAIC's mission to delivery leading solutions, capabilities, and resources to our customers in National Security, Defense, Federal/Civilian, and other organizations. As a member of the Classified IT Operations teams, you will be responsible for the day-to-day and continuous administration,...
-
Senior Information System Security Officer
7 days ago
Arlington, United States KeenLogic Full timeJob DescriptionJob DescriptionPosition: ISSO IIIKeenLogic is seeking to hire an Information System Security Officer (ISSO) to join our team at the Drug Enforcement Administration. The ISSO is the component official assigned by the Authorizing Official or other senior management to ensure the appropriate operational security posture is maintained for an...
-
Information Systems Security Officer
4 days ago
Arlington, United States Incept Data Solutions, Inc Full time**Information Systems Security Officer (ISSO)** **Arlington, VA** Qualifications: - Active Secret clearance - Must be able to obtain a TS/SCI clearance - Must be able to obtain DHS Suitability **Job Summary**: We are looking for an Information Systems Security Officer (ISSO) to support the design, development, and deployment of advanced cybersecurity...
-
IT Specialist
4 days ago
Arlington, United States US Office of the Chief of Staff of the Army Full time**Duties**: - Serves as a Senior Information Technology (IT) Risk Management Framework (RMF) Assessment and Authorization (A and A) Specialist and a Cybersecurity (CS) Intelligence Community (IC) Security Engineering Advisor (SEA). - This position participates in National, Department of Defense (DoD), and Department of the Army (DA)senior level CS...
-
Senior Cloud Architect
3 weeks ago
Arlington, United States BCMC Full timeJob DescriptionJob DescriptionBCMC is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment including introducing new cyber capabilities to address emerging threats.The Senior Cloud Architect must display superb understanding and be...
-
Information Security Manager with Security Clearance
Found in: Dice One Red US C2 - 2 weeks ago
Arlington, United States Base One Technologies Full timeResponsibilities:- Providing support to plan, coordinate, and implement the lab’s information security- Providing support for facilitating and helping the lab identify its current security infrastructure and defining future programs, design and implementation of security related to lab systems- Assisting the efforts of security staff to design, develop,...
-
Information Security Manager
Found in: Dice One Red US C2 - 2 weeks ago
Arlington, United States Base One Technologies Full timeResponsibilities:• Providing support to plan, coordinate, and implement the lab’s information security• Providing support for facilitating and helping the lab identify its current security infrastructure and defining future programs, design and implementation of security related to lab systems• Assisting the efforts of security staff to design,...
-
Information Security Manager
Found in: Dice One Red US C2 - 2 weeks ago
Arlington, United States Base One Technologies Full timeResponsibilities:• Providing support to plan, coordinate, and implement the lab’s information security• Providing support for facilitating and helping the lab identify its current security infrastructure and defining future programs, design and implementation of security related to lab systems• Assisting the efforts of security staff to design,...
-
Cyber Compliance SME
2 weeks ago
Arlington, United States Snowcreek Consulting Full timeJob DescriptionJob DescriptionSalary: Snowcreek Consulting, LLC Cyber Compliance SME POSITION SUMMARY: Snowcreek Consulting is hiring a Cyber Compliance SME to support the Defense Information Systems Agency (DISA) Joint Service Provider (JSP) on the Platform Services Contract. As the Cyber Compliance SME you will:Serve as the knowledge expert of all...
-
Cyber Compliance SME
3 days ago
Arlington, United States Snowcreek Consulting Full timeJob DescriptionJob DescriptionSalary: Snowcreek Consulting, LLC Cyber Compliance SME POSITION SUMMARY: Snowcreek Consulting is hiring a Cyber Compliance SME to support the Defense Information Systems Agency (DISA) Joint Service Provider (JSP) on the Platform Services Contract. As the Cyber Compliance SME you will:Serve as the knowledge expert of all...