Responsibilities
Program Description: The program provides Systems Engineering and Technical Assistance (SETA) core and non-core support in the areas of Cyber Security and Management to improve the Information Assurance (IA) posture of a National customer. The contracts Core Capabilities are: IA Management, Federal Information Security Management Act (FISMA) coordination and reporting, Risk Management Framework (RMF) application, IA compliance measurements and metrics, Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support. Position Description: The Delegated Authorizing Official Representative (DAO-R) provides support to the customer in the area of Cyber Security. Daily tasks include, but are not limited to: Ensure adherence to ICD-503 and customer specific directives/policies through the lifecycle (RMF 1-6) of customer sponsored assets. Provide risk recommendations to the customer after reviewing sponsored asset overall risk posture as part of Authority to Operate (ATO) RMF process. Manage/track customer sponsored assets’ plan of action and milestones (POAMs) by working with various security stakeholders (ISSO/ISSE/ISSM/SCA) post authorization. Screen new asset requests to ensure sponsorship and information system owner identification. Facilitate System Review Team to ensure that new/existing customer sponsored assets have the correct project regulation, data types/C-I-A impact assignments, and overlay assignments as well (with customer signoff). Assign asset security controls and levy asset specific liens on controls for which the program did not meet during accreditor reviews. Ensure customer sponsored assets maintain their security postures in accordance with customer identified Continuous Monitoring (RMF step 6) directives and policies. Provide continuous adhoc authorization-related daily support to both customer and programs.
Qualifications
Required: Requires 10 to 12 years with BS/BA or 8 to 10 years with MS/MA or 5 to 8 years with PhD. Must possess and be able to maintain a TS/SCI with Poly. Able to support customer’s core hours in a SCIF environment (0900-1500; Mon – Fri). DoD 8570 certification in IAT or IAM. Experience implementing RMF Process and NIST 800-53 technical controls, as well as developing and maintaining associated certification and accreditation documentation. Able to work in a team environment. Familiarity with Cloud (Azure, AWS, Oracle Cloud (OCI), Google Cloud). Familiarity with Cloud Security groups. Ability to analyze and assess vulnerability management tools. Familiarity with analyzing and generating reports with Splunk. Desired: Bachelors of Science Degree in Science, Technology, Engineering or Mathematics (STEM) or an advanced IA certification. Self-starter requiring limited direction and supervision. Experience briefing senior customer personnel. Ability to organize and prioritize numerous customer requests in a fast-paced, deadline-driven environment. Familiarity with Amazon Web Services (AWS). Familiarity with customer's IA processes. Experience with ServiceNow. Familiarity with Cross Domain Systems (CDS). Experience supporting IC or DoD in the Cyber Security Domain.
EEO Statement
Arcfield proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active-Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.
#J-18808-Ljbffr
Program Description: The program provides Systems Engineering and Technical Assistance (SETA) core and non-core support in the areas of Cyber Security and Management to improve the Information Assurance (IA) posture of a National customer. The contracts Core Capabilities are: IA Management, Federal Information Security Management Act (FISMA) coordination and reporting, Risk Management Framework (RMF) application, IA compliance measurements and metrics, Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support. Position Description: The Delegated Authorizing Official Representative (DAO-R) provides support to the customer in the area of Cyber Security. Daily tasks include, but are not limited to: Ensure adherence to ICD-503 and customer specific directives/policies through the lifecycle (RMF 1-6) of customer sponsored assets. Provide risk recommendations to the customer after reviewing sponsored asset overall risk posture as part of Authority to Operate (ATO) RMF process. Manage/track customer sponsored assets’ plan of action and milestones (POAMs) by working with various security stakeholders (ISSO/ISSE/ISSM/SCA) post authorization. Screen new asset requests to ensure sponsorship and information system owner identification. Facilitate System Review Team to ensure that new/existing customer sponsored assets have the correct project regulation, data types/C-I-A impact assignments, and overlay assignments as well (with customer signoff). Assign asset security controls and levy asset specific liens on controls for which the program did not meet during accreditor reviews. Ensure customer sponsored assets maintain their security postures in accordance with customer identified Continuous Monitoring (RMF step 6) directives and policies. Provide continuous adhoc authorization-related daily support to both customer and programs.
Qualifications
Required: Requires 10 to 12 years with BS/BA or 8 to 10 years with MS/MA or 5 to 8 years with PhD. Must possess and be able to maintain a TS/SCI with Poly. Able to support customer’s core hours in a SCIF environment (0900-1500; Mon – Fri). DoD 8570 certification in IAT or IAM. Experience implementing RMF Process and NIST 800-53 technical controls, as well as developing and maintaining associated certification and accreditation documentation. Able to work in a team environment. Familiarity with Cloud (Azure, AWS, Oracle Cloud (OCI), Google Cloud). Familiarity with Cloud Security groups. Ability to analyze and assess vulnerability management tools. Familiarity with analyzing and generating reports with Splunk. Desired: Bachelors of Science Degree in Science, Technology, Engineering or Mathematics (STEM) or an advanced IA certification. Self-starter requiring limited direction and supervision. Experience briefing senior customer personnel. Ability to organize and prioritize numerous customer requests in a fast-paced, deadline-driven environment. Familiarity with Amazon Web Services (AWS). Familiarity with customer's IA processes. Experience with ServiceNow. Familiarity with Cross Domain Systems (CDS). Experience supporting IC or DoD in the Cyber Security Domain.
EEO Statement
Arcfield proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active-Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.
#J-18808-Ljbffr
