The individual in this role, will be a member of the team implementing and overseeing all phases of the RMF process and day-to-day cybersecurity activities for DoD cloud-based systems. Primary responsibilities are listed below.
- Supporting the system/application authorization and accreditation (A&A) effort, to include assessing and guiding the quality and completeness of A&A activities, tasks, and resulting artifacts mandated by governing DoD and Air Force policies (i.e., Risk Management Framework (RMF).
- Recommending policies and procedures to ensure the reliability of and accessibility to information systems and to prevent and defend against unauthorized access to systems, networks, and data.
- Conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs.
- Promoting awareness of security issues among management and ensuring sound security principles are reflected in organizations' visions and goals.
- Conducting systems security evaluations, audits, and reviews.
- Recommending systems security contingency plans and disaster recovery procedures.
- Recommending and implementing programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures
- Participating in network and systems design to ensure implementation of appropriate systems security policies
- Facilitating the gathering, analysis, and preservation of evidence used in the prosecution of computer crimes
- Assessing security events to determine impact and implementing corrective actions
- Ensuring the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of all IT services
- Perform the Information System Security Engineer (ISSE) duties in an Information Assurance Workforce System Architecture and Engineering (IASAE) position as outlined in AFI 33-200, AFI 33-210 and AFMAN 33-285 for assigned systems
- Perform the Information System Security Officer (ISSO) duties as outlined in DoDI 8510.01for assigned systems/applications
- Perform the Information System Security Manager (ISSM) duties as outlined in DoDI8510.01 for assigned systems/applications
Requirements
An active Secret is required for this position. Candidates who do not meet this requirement will not be considered.
Technical Areas of Expertise
- Expert knowledge of NIST RMF processes, policies, and DoD directives
- Expert ability to create and revise standard operating procedures (SOPs), work instructions (WI), and Tactics, Techniques, and Procedures (TTPs)
- Expert ability to create presentations and present policies, guidance, and procedures to varied audiences including senior leadership levels
- A demonstrated expertise in RMF process
- Customer service skills
- A demonstrated ability (including knowledge and experience) to perform tasks related to AF cyber security
- Knowledge of cloud-based solutions is a plus
Qualifications
- Active DoD Top Secret clearance
- Master's Degree in a Related Field
- IAM Level III Certification
- 15 years of experience, of which 5 must be in the DoD
- In depth knowledge of DoD cyber security policies and regulations
- Experience in providing security recommendations to senior leadership
- Bachelor's Degree and 10 years of prior experience, additional experience may be considered in lieu of degree
Benefits
Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, a unique 401K plan, and generous PTO and Federal Holidays.
Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development!
Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity and Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.