Information Security Analyst (RMF)

Craig Technical Consulting, Inc.
Saint Inigoes, United States of America
20 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
$ 125K

Job location

Saint Inigoes, United States of America

Tech stack

Computer Security
Information Systems
Microsoft Visio
Subsystems
Information Technology
Scap Compliance Checker

Job description

Summary: Craig Technologies has an opening for an Information Security Analyst with Risk Management Framework (RMF) experience at Webster Outlying Field, St. Inigoes, MD. This candidate will provide Cybersecurity analysis, engineering, and certification and accreditation (C&A)/Assessment and Authorization (A&A) support in accordance with National Institute of Standards and Technology (NIST), RMF, and/or Platform Information Technology (PIT) methodologies.

Detailed Description:

  • Plan, implement, upgrade and monitor security measures for the protection of complex DoD communication systems and networks.

  • Assess IA posture of DoD communications systems and networks in support of system certification and accreditation.

  • Maintain and support current and ongoing C&A packages.

  • Develop and maintain system IA documentation to support certification of compliance to applicable standards including

Requirements

  • A Bachelor's degree in Information Technology, Cybersecurity, Data Science, Information Systems, Computer Science, or a related field, is required. Or a minimum of four (4) years experience and a CASP+ certificate in substitute of degree.

  • Experience supporting Army RMF packages.

  • Experience with DSS RMF process, DISA ACAS, and DoD IA compliance standards.

  • Security + CE/DoD 8570.01 IAT-III compliance and knowledge of Navy IT/IA policies and procedures is required.

  • Occasional travel maybe required.

  • Security Clearance: An active DoD Secret clearance is required to start.

  • Applicant selected may be subject to a security investigation and must meet eligibility requirements for access to classified information.

Knowledge and Skills:

  • Risk Management Framework (RMF) processes.

  • Cybersecurity/A&A tools (i.e., eMASS, eMASSter, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio).

  • IT systems and subsystems.

  • Project management.

  • Written and verbal communications.

  • Teamwork and collaboration.

  • The applicant must be familiar with working on classified systems (i.e., SIPRNet) within secure environments.

The salary range for this role is $100,000 - $125,000; however, Craig Technologies considers several factors when extending an offer for employment, including but not limited to, the role and associated responsibilities, a candidate's work experience, education/training and preferred skills and knowledge.

Note: This job description describes the general nature of the duties and requirements of the job. It is not intended to be an exhaustive list or to limit the supervisor's ability to modify work assignments as appropriate.

Apply for this position