(RMF) Systems Engineer

Location: Hollywood, MD
Date Posted: 01-10-2019
All qualified resumes will receive feedback within 24 hours
Must have an Active Secret Clearance

Provide Cybersecurity (CS) support for Weapons Planning Software (WPS) in compliance with the DoDI 8510.01, “Risk Management Framework (RMF) for DoD Information Technology (IT)”, and all associated USAF and DoD policies, processes, and procedures that require cybersecurity actions to support deployment and sustained operations. Provide Risk Management Framework coordination support, and execution of all required cybersecurity tasks prior to, during, and after the successful achievement of ATOs for all WPS systems. Support all related system lifecycle cybersecurity activities, including but not limited to documentation that will be required as a result of the significant architecture and design changes (e.g. Risk Assessments, Annual Reviews, Technical Reviews, Agile and Waterfall development cycles).
Applies extensive technical expertise, and has full knowledge of other related disciplines. Able to communicate effectively and clearly present technical approaches and findings. Develop technical solutions to complex problems, which require the regular use of ingenuity and creativity. Work is performed without appreciable direction. Exercises considerable latitude in determining technical objectives of assignment. Completed work is reviewed from a relatively long- term perspective, for desired results. Guides the successful completion of major programs and may function in a project leadership role. Erroneous decisions or recommendations would typically result in failure to achieve major organizational objectives. Represents the organization as the prime technical contact on contracts and projects. Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.
Create and execute cyber security test plans. Advise system owners and stakeholders on new developments and advanced cybersecurity techniques. Create Cyber Security artifacts and formulate RMF packages for Information Technology (IT) environments. These packages will detail the system architecture and system configuration. Review and analyze system implementation plans. Formulate and execute system assessments, audits, reviews, and contingency testing. Review, analyze, and interpret technical procedures and regulatory requirements. Write reports, business correspondence, and procedure manuals. Conduct assessments of the RMF impacts on planned functionality and/or architectural changes. Identify corrective actions/mitigation strategies to achieve/sustain RMF compliance. Perform selection, implementation, validation, and establishment of baseline of Defense Information Systems Agency (DISA) Control Correlation Identifiers (CCI). Perform development of responses to Plans of Action & Milestones (POA&M) which account for confidentiality, integrity, and availability.
Candidate must have either a Bachelors in Science with 9 years experience; Masters degree with 7 years experience; or PhD with 4 years experience. Must be familiar with some the following tools: Fortify, ACAS/Nessus, HP WebInspect, DISA Security Requirements Guides (SRG), DISA Security Technical Implementation Guides (STIGs), Team Foundation Server (TFS)
this job portal is powered by CATS