Apply on Employer Site

Concurrent Technologies Corporation · 6 hours ago

Cybersecurity RMF Analyst

Hawaii, United States

Full-time

Onsite

Mid, Senior Level

$84K/yr - $120K/yr

4+ years exp

Concurrent Technologies Corporation (CTC) is a leader in providing energy and sustainability consulting services to the federal government. They are seeking a Cybersecurity RMF Engineer to provide IT, OT, and Cybersecurity support, focusing on securing Facility Related Control Systems for the Marine Corps. The role involves conducting assessments, ensuring compliance with security requirements, and making recommendations to enhance cybersecurity posture.

Non Profit

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Assist in computer network defense assessments, including threat intelligence, Risk identification, vulnerability management, and security operations

Assess compliance using NIST, DoD, USMC and other security requirements to include the CNSSI 1253 and/or NIST 800-53 Security controls and DISA STIGs/SRGs

Develop, submit, and maintain RMF packages in eMASS for control systems and SCADA environments

Coordinate with ISSMs, system owners, and other cybersecurity stakeholders

Support site assessments, system categorization, and cybersecurity evaluations for operational technology (OT)

Provide guidance on cybersecurity compliance for ICS/SCADA vendors and integrators

Continuously assess the cybersecurity posture of assigned sites by verifying scans, reviewing policies and procedures, and making recommendations for improvement

Assist in assessment activities on both FRCS/OT and IT according to documented requirements (i.e. STIG/SRG) and scan using tools such as ACAS, Nessus, and Lansweeper

Analyze assessment data to identify system deficiencies and vulnerabilities

Provide remediation recommendations to address vulnerabilities

Stay abreast of emerging cyber threats, attack techniques, and industry best practices in computer network defense. Assess their potential impact on the organization and make recommendations for proactive measures

Participate in conferences, workgroups, meetings and other required events

Travel to supported installations and required locations to provide related cybersecurity expertise

Qualification

DoD RMFEMASSCybersecurity assessmentsVulnerability scanningACASNessusSCADAActive DirectoryConfiguration ControlPOA&M documentationCISACISMCEHCISSPGICSPProblem-solvingTeamwork

Required

Bachelor's Degree in Computer Science or IT related field and at least 4-6 years of experience performing Computer Network Defense

Minimum of 2 years of relevant experience in computer network defense, cybersecurity, conducting assessments, and vulnerability scanning using tools like ACAS, Nessus, etc

Minimum 3+ years of experience with DoD RMF and eMASS

Strong problem-solving skills and the ability to work effectively in a team environment

DoD 8140 compliant

Familiar with Active Directory, Group Policy, Windows Workstation and server administration

Ability to obtain and maintain a Department of Defense (DoD) Common Access Card (CAC)

Ability to maintain a US Government Secret Security Clearance