Information System Security Officer, Senior (Top Secret)
Resource Management Concepts, Inc. · Patuxent River, MD · 2 wk ago
On-siteInformation Technology$150k–$190k/yrFull-time
About the role
Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America.
Responsibilities
- Serving as a Lead ISSO for a designated NAVAIR program
- Conduct Risk Assessments for US Navy RMF packages and provide recommendations to improve the Cyber Security posture through risk mitigation steps
- Managing day-to-day cybersecurity activities for the team, including the oversight of less senior staff and their assigned responsibilities
- Performing duties of the Risk Management Framework (RMF) ISSO role, including:
- Developing US Navy RMF authorization packages
- Performing validation activities for RMC authorization packages
- Preparing/Updating RMF documentation
- Preparing IATTs and Use Case MFRs as required to support development and testing
- Preparing for CyberSafe authorization in parallel with the system authorizations
- Establishing Cybersecurity policies IAW security control implementations
- Implementing a Cybersecurity Plan
- Performing Cyber Tabletop exercises
- Performing asset and vulnerability management via VRAM reporting
- Performing vulnerability assessments and system authorization activities through collaboration with SMEs (System Administrators, Network Admins, Lab Managers, Program Managers, and ISSMs)
- Evaluating and reporting software IAW DITPR/DADMS requirements
Requirements
- A bachelor's degree and more than ten (10) years of relevant experience are required.
- An associate degree plus four (4) years of additional experience performing work related to the labor category functional description may be substituted for a Bachelor's Degree.
- An active DoD TOP SECRET clearance is required to start.
- The applicant must meet the certification and clearance requirements established IAW the DoD Manual 8570-1M.
- The applicant must have one of the following certifications to start:
- CISM
- CISSP (or Associate)
- GSLC
Qualifications
- The applicant must be knowledgeable and proficient in the following:
- Risk Management Framework (RMF) processes
- Cybersecurity/A&A tools (i.e., eMASS, eMASSter, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio)
- IT systems and subsystems
- Rotary Aircraft systems
- Secure Operating Systems
- Project management
- Written and verbal communications
- Teamwork and collaboration
- Working on classified systems (i.e., SIPRNet) within secure environments
- Working on high-visibility or mission-critical aspects of a given program and performing all functional duties independently and as part of a team in NAVAIR environments.
Skills
- Knowledgeable and proficient in the above-mentioned areas
Benefits
- At RMC, we're committed to your career growth!
- RMC differentiates itself from other firms through its investment in our employees. We invest our resources to train, certify, educate, and build our employees.
- We offer Monday to Friday full-time day shift work and can assist in paid relocation.
- This also includes a competitive paid vacation package with 11 paid federal holidays.
- We offer high-quality, low-deductible healthcare plans, pet insurance, and a competitive 401K package.
- The salary range for this position is $150,000 - $190,000.