Information Assurance Specialist - RMF jobs in United States
cer-icon
Apply on Employer Site
company-logo

Resource Management Concepts, Inc. ยท 12 hours ago

Information Assurance Specialist - RMF

positionIndian Head, MD
timeFull-time
remoteOnsite
seniorityEntry, Mid Level
money$95K/yr - $135K/yr
date2+ years exp

Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. RMC is hiring for Information Assurance Specialist - RMF to support customers in Indian Head, MD, focusing on risk assessments, security policy documentation, and compliance with security standards.

Consulting
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Applicant must be able to perform risk assessments, accreditation, data calls, vulnerability assessments and information assurance requirements
Applicant must be able to document the definition, production, and maintenance of security policy and documentation. Develop and maintain Information Assurance (IA) documents to support accreditation requirements for RDT&E Labs to achieve an Authority to Operate (ATO) or Platform Risk Assessment (PRA)
Applicant must be able to review security relevant documentation specific to the required systems Authorization and Accreditation (A&A) process and IA compliance and prepare technical discussion papers documenting the results of this analysis to ensure shortfalls are identified per CDRL A002. Provide the support and information required to transition to and comply with DoD, DON, and national level. policies if needed
Knowledge of the Department of Navy Application Database and Management System (DADMS) and Track all software to ensure it is current and approved
Maintain a detailed inventory of all software and hardware components within the RMF package
Evaluate system requirements and identify applicable Security Technical Implementation Guidelines (STIG) requirements, procedures, policy and guidance for the system
Evaluation, determine and document if policy/procedures/guidance are adhered to and implemented
Compile and document artifacts such as SOPs, certifications, policies, scans, checklists, and POA&Ms generated or collected that are required for C&A or A&A
Applicant must have strong verbal and written communication skills and be detail-oriented
Applicant must be knowledgeable of the relevant NIST Special Publications guidance as it pertains to the RMF, specifically the NIST SP 800-53A - Revision 4 for Assessing Security & Privacy Controls

Qualification

Risk assessmentsInformation Assurance documentationNIST SP 800-53ADoD 8570/5239 IAT Level 2 CertificationNavy's eMASS systemSecurity Technical Implementation GuidelinesVerbal communicationWritten communicationDetail-oriented

Required

Applicant must be able to perform risk assessments, accreditation, data calls, vulnerability assessments and information assurance requirements
Applicant must be able to document the definition, production, and maintenance of security policy and documentation. Develop and maintain Information Assurance (IA) documents to support accreditation requirements for RDT&E Labs to achieve an Authority to Operate (ATO) or Platform Risk Assessment (PRA)
Applicant must be able to review security relevant documentation specific to the required systems Authorization and Accreditation (A&A) process and IA compliance and prepare technical discussion papers documenting the results of this analysis to ensure shortfalls are identified per CDRL A002. Provide the support and information required to transition to and comply with DoD, DON, and national level policies if needed
Knowledge of the Department of Navy Application Database and Management System (DADMS) and Track all software to ensure it is current and approved
Maintain a detailed inventory of all software and hardware components within the RMF package
Evaluate system requirements and identify applicable Security Technical Implementation Guidelines (STIG) requirements, procedures, policy and guidance for the system
Evaluation, determine and document if policy/procedures/guidance are adhered to and implemented
Compile and document artifacts such as SOPs, certifications, policies, scans, checklists, and POA&Ms generated or collected that are required for C&A or A&A
Applicant must have strong verbal and written communication skills and be detail-oriented
Applicant must be knowledgeable of the relevant NIST Special Publications guidance as it pertains to the RMF, specifically the NIST SP 800-53A - Revision 4 for Assessing Security & Privacy Controls
A Bachelor's Degree and two to four (2-4) years of experience is required. Six (6) years of experience or a NQV Level II appointment or higher is required without a degree
The selected applicant must have DoD 8570/5239 IAT Level 2 Certification (Security + CE) or IAT Level 3 Certification (CASP or CISSP) and the ability to work independently and as part of a team in researching data and developing analytical techniques and methodologies
Security Clearance: An Interim DoD Secret clearance is required to start. A Top Secret clearance will be required for this position. Applicant selected may be subject to a security investigation and must meet eligibility requirements for access to classified information

Preferred

Working knowledge of the Navy's eMASS system, is preferred

Benefits

Tuition assistance
Competitive paid vacation package with 11 paid federal holidays
High-quality, low-deductible healthcare plans
Pet insurance
Competitive 401K package

Company

Resource Management Concepts, Inc.

twittertwittertwitter
company-logo
RMC is a dedicated small business provider of exceptional management and technology solutions.
dateFounded in 1990
location
Lexington Park, Maryland, USA
people-size501-1000 employees
web-link
http://rmcweb.com

Funding

Current Stage
Late Stage

Recent News

Memphis Business Journal
Best Places to Work: Small category 3rd place: Strategic Resource Management
2023-10-05
Company data provided by crunchbase