Have you ever wanted to work at a company with other like-minded hard workers supporting national security issues? If you're seeking a reputable mid-size company with the pay, benefits, and energy of a Fortune 100 company, then Railhead is for you. We surround ourselves with top talent across the DoD, Intelligence Community, and commercial sector. Whether you're working on-site at one of Railhead's corporate locations around the globe, or at a customer site, we inspire a culture of fun and creativity while performing some of our Nation's most critical and impactful work.
Program Summary:
The Defense Enclave Services (DES) program supports a highly demanding mission and requires expert technical and professional management support to DISA enterprise Information Technology (IT) services. You will be working in a large and complex IT consolidation, migration and modernization effort towards a Single Server Provider model that provides sustainment, maintenance, Problem and Change management services to help ensure secure, reliable and uninterrupted availability of the Department of Defense networks and services.
Primary Responsibilities:
- Develop secure privileged access management solutions and architectures for clients.
- Evaluate designs and infrastructure against information assurance/security standards and procedures.
- Support Authorizing Official (AO) actions by developing and delivering PAM (Privileged Access Management) solutions that include supporting documents and artifacts in accordance with RMF as defined in NIST 800-37 revision 2 and related agency specific RMF requirements
- Provide input into an Audit and Accountability Plan containing methods, procedures, and planned reviews for the continuing accreditation and authorization against AU (Audit and Accountability) family controls per NIST SP 800-53 guidance
- Provide input to and guide implementation and/or verification and validation of an organizational access control policy and plan reflecting PAM and integrated cybersecurity solutions in compliance with risk-levels defined in the National Institute of Standards and Technology (NIST) 800-53, rev 4, Access Control family of controls to include auditing annually, at a minimum
- Develop integrated solutions, processes, and procedures for evaluating, monitoring, remediating, and/or documenting information system security vulnerabilities IAW DoD Instruction (DoDI) 8510.01 (RMF for DoD IT)
- Support integration and implementation of Asset Management, Identity, Access Control Systems/Solutions, Compliance Monitoring and Remediation, Multi-Factor Authentication (MFA) and/or single sign-on (SSO) solutions in addition to other cybersecurity and/or cyber operations tools and solutions IAW DoDI 8520.02, DoDI 8520.03, and other applicable policies and regulations
- Review and recommend updates to existing PAM architectures, designs, and/or solutions
Basic Qualifications:
- Bachelor’s degree and 12-15 years of related experience. Relevant experience may be substituted for education.
- Certified Information Systems Security Professional (CISSP)
- Secret Security CLearance
- 8+ years hands-on experience designing or implementing PAM solutions, including all related documentation and artifacts
- Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps
- Extensive experience in design and development of enterprise PAM architectures. Experience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology.
- Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes.
- Understanding of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems: a Security Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations.
- Previous experience developing architectures, strategies, strategic plans, roadmaps, and technical standards for the federal IT enterprise environment.
Preferred Qualifications:
- CyberArk Sentry certified
- CyberArk Guardian certified
- Other PAM solution certification(s)
- Additional certifications demonstrating cybersecurity/technical mastery
About Railhead:
Railhead, Inc. is a leader in intelligence, surveillance, and reconnaissance; advanced cyber solutions; cloud and managed IT solutions; engineering, and information-based solutions for law enforcement and homeland security. We provide training and logistics in support of ready-made operations; and operational support services and solutions in support of organizations not limited to DHS, DoD, and the Intelligence Community (IC). We hire mission enablers who reflect our communities and proactively embrace diversity and inclusion, in order to advance our corporate culture, develop our family of employees into the best they can be, and in turn grow our market share throughout industry.
Railhead, Inc. is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.
