Execute comprehensive IT security audits on complex systems in accordance with DoD and Federal requirements.
Perform security control validation to verify proper implementation and effectiveness of technical, operational, and management controls.
Conduct vulnerability assessments and analyze findings to identify security gaps and risks.
Support RMF activities including control selection, implementation validation, assessment, and authorization support.
Evaluate applied security mitigations to determine alignment with security requirements and business objectives.
Validate project security controls to ensure compliance with DoD contracting system standards.
Document security findings, risk assessments, and remediation recommendations.
Maintain and update RMF artifacts and assessment results within eMASS.
Collaborate with system owners, engineers, and stakeholders to resolve security issues and implement corrective actions.
Support audits, inspections, and compliance reviews while ensuring accuracy and quality of deliverables.
Requirements
US Citizenship with the ability to obtain and maintain a US Government Clearance.
Minimum of two (2) years of experience working with DoDI 8500.2 and/or NIST SP 800-53, with demonstrated understanding of the Risk Management Framework (RMF).
Strong analytical and problem-solving skills to identify, evaluate, and resolve security issues.
Strong skills implementing and configuring networks and network components.
Working knowledge of Enterprise Mission Assurance Support Service (eMASS).
Understanding of how to weigh business and mission needs against security risks.
Experience analyzing applied mitigations to determine whether they meet security requirements.
Demonstrated knowledge of Risk Management Framework (RMF) concepts and processes.
Benefits
Competitive compensation and benefits package including bonuses and 401K with 6% matching that vest immediately.