What are the responsibilities and job description for the Cyber Security RMF position at ATG?
Cyber Security – RMF Engineer (Task 8)
Location: Fort Belvoir
Requires US Citizenship
Employment Term and Type: Regular, Full Time
Required Security Clearance: Secret
Required Education: BA/BS or equivalent and at least 5 years of applicable experience.
The contractor shall provide IT and Cybersecurity technical and functional expertise in support of
DCS, G-6 assigned projects ensuring compliance with applicable Department of Army, federal, and
military regulations, directives, and guidelines. This includes all aspects of a system’s security life
cycle, from developing and maintaining Assessment and Authorization (A&A) documentation to
performing independent validation and verification of controls to ongoing operational security
support through the Army AO
Responsibilities:
●
Update and maintain the Army’s Risk Management Framework (RMF) to current standards,
guidelines, and approaches
●
Ensure that the cybersecurity program adheres to Department of Army, executive orders,
national security directives, and other regulations
●
Assist with the technical and functional development, revision, and implementation of the
next generation of Risk Management Framework for systems, organizations, and individuals
aligned within Army Cyber operating and functioning areas
●
Coordinate with the DCS, G-6 government team lead to prepare, update, track, maintain, and
recommend the necessary system security documentation for assessment and accreditation
activities
●
Conduct an independent security assessment of security controls for DCS-G-6 systems
through interviews, document reviews, and testing of the system to ensure that appropriate
controls are in place and operating as designed and intended
●
Provide expert analysis and recommendations on risk (to include impact and likelihood) and
mitigation options for security findings, gaps and vulnerabilities
●
Enhance cyber awareness with clients and project teams.
●
Work alongside federal clients to help them mitigate risk using continuous monitoring and
incident response.
Qualifications
●
Bachelor’s degree with 8 years of experience focused on cyber security
●
Possess active Secret clearance
●
DoD 8570 IAT level II
●
Experience working with RMF 2.0 and NIST 800-53
●
Experience working with cyber security tools
●
Experience with cyber awareness (e.g., phishing emails, cyber training)
●
Must be able to develop and manage Information Security policies, procedures, and
methodologies in accordance with Federal Information Security Management Act (FISMA),
NIST Special Publications, other Federal laws & regulations, and direction from engagement
leadership
●
Must be able to interface directly with stakeholders, and leadership in the Office of
Information Security, Policy and Compliance Office, and Executive level federal clients
Preferred:
●
Prior professional services or federal consulting experience
●
Certifications (e.g., CompTIA Security , CEH, CISSP)
●
Familiarity with eMASS
●
Familiarity with Defense Information Systems Agency (DISA) Secure Technical
Implementation Guidelines (STIGs)
●
Experience with remediating identified Information Assurance Vulnerability Alerts (IAVAs)
within DoD systems
