Program Description:
The program provides Systems Engineering and Technical Assistance (SETA) core and non-core support in the areas of Cyber Security and Management to improve the Information Assurance (IA) posture of a National customer. The contracts Core Capabilities are: IA Management, Federal Information Security Management Act (FISMA) coordination and reporting, Risk Management Framework (RMF) application, IA compliance measurements and metrics, Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support.
The Delegated Authorizing Official Representative (DAO-R) Senior Technical Specialist provides support to the customer in the area of Cyber Security. Daily tasks include, but are not limited to:
·Ensure adherence to ICD-503 and customer specific directives/policies through the lifecycle (RMF 1-6) of customer sponsored assets
·Provide risk recommendations to the customer after reviewing sponsored asset overall risk posture as part of Authority to Operate (ATO) RMF process
·Manage/track customer sponsored assets’ plan of action and milestones (POAMs) by working with various security stakeholders (ISSO/ISSE/ISSM/SCA) post authorization
·Screen new asset requests to ensure sponsorship and information system owner identification
·Facilitate System Review Team to ensure that new/existing customer sponsored assets have the correct project regulation, data types/C-I-A impact assignments, and overlay assignments as well (with customer signoff)
·Assign asset security controls and levy asset specific liens on controls for which the program did not meet during accreditor reviews
·Ensure customer sponsored assets maintain their security postures in accordance with customer identified Continuous Monitoring (RMF step 6) directives and policies
·Provide continuous adhoc authorization-related daily support to both customer and programs
