Description
Description
SAlC is seeking a Cybersecurity Specialist to support the U.S. Army Combat Capabilities Development Command (CCDEVCOM), Engineering and Systems Integration (ESl) Directorate, Quick Reaction Capability (QRC) Branch.
This position is on-site in Aberdeen, MD on Aberdeen Proving Ground (APG).
ln support of the information Analysis Center Multiple Award Contract (lAC MAC) and Task Order (TO), SAlC is seeking a qualified, cleared, and experienced professional who has in-depth experience in the achievement of strategic goals and objectives related to the ongoing execution and maturity of its cybersecurity and assessment and authorization (A&A) programs.
Job Responsibilities:
Support the maintenance and upkeep of system packages as an Information Systems Security Officer (ISSO), using a GRC application (e.g., eMASS / XACTA) and/or customer tool(s) to ensure auditability and report on the security posture of assigned systems.
Support the Army's risk management process by maintaining visibility and awareness of changes to the cyber threat landscape that impact the security posture of their assigned systems and ensure efforts to address security risk are executed efficiently and on schedule.
Support the implementation and documentation of security controls as required by the NIST Risk Management Framework (RMF). Creating system security plans (SSPs) and control implementation narratives to prove compliance in support of the A&A process.
Serve as a cybersecurity liaison between internal and external branch stakeholders to map and align priorities with program strategic goals and milestones to drive A&A activities.
Work independently and as a member of a team to guide federal customers through the Risk Management Framework, focusing on A&A and continuous monitoring lifecycles.
Execute A&A and ongoing authorization activities. In addition to providing guidance and technical direction to SO and Federal ISSOs, as required.
Collaborate with the Security Engineering and Architecture team members on risk assessments, impact assessments, vulnerability and compliance management and security change requests to ensure system compliance, up-to-date package information, and that all system changes are being executed within the configuration control and system development lifecycle.
Provide technical guidance and best practices to the team and customers to ensure that the agency achieves maximum value from its IT investments.
Conduct comprehensive security inspections and validation of all incoming and in-service system hardware to ensure compliance with DoW and Army directives, STIGs, and hardware assurance policies.
Qualifications
Required Education:
Bachelors degree in related field and five (5) years or more experience; four (4) years of experience considered in lieu of degree.
Clearance Requirements:
Must have an active TS/SCI with current CI polygraph; US Citizenship required.
Required Skills:
Demonstrated experience with establishing, implementing, and maintaining the A&A lifecycle using the NIST RMF.
Experience with vulnerability scanning reports and findings from Nessus, Security Center, and/or EvaluateStig.
Demonstrated knowledge in the field of risk management and compliance to efficiently work on and apply frameworks including ISO, NIST CSF, NIST 800-53, NIST 800-171, NIST 800-137, NIST 1800 series, etc.
Demonstrated experience with the development and update of policies to align with OMB, DHS, NIST, CNSS, ICD, Congressional and other cybersecurity mandates, and directives.
Experience with Application Security Audits and Risk Scoring.
Maintain updated knowledge in the field of risk management and compliance to efficiently work on frameworks including NIST CSF, ISO, NIST 800-53, NIST 800-34 etc.
Ability to independently manage tasks across multiple competing priorities and work tasks in parallel to maintain deadlines.
Must be able to lift, pull, push and carry up to 30 pounds, unassisted, on a regular basis.
Ability to stand, walk, bend, kneel, squat, climb ladders/equipment, and crawl for extended periods.
Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
Apply on company website
Find Connections via Linkedin
