Navy Qualified Validator - Information System Security Specialist

Information System Security Specialist (ISSE) – Navy Qualified Validator (NQV)

TAMARACK Technologies Inc. is seeking multiple Information System Security Specialists in support of the Department of Defense (DoD).

Organization: Naval Information Warfare Center (NIWC) Atlantic

Location: Telework – Hybrid in Norfolk, VA

Eligible applicants must reside in Hampton Roads – Tidewater Area as location may be subject to change.

Salary Range: $85,000 - $100,000

Position Description: The Information System Security Specialist (ISSE) will provide Cybersecurity support and risk analysis to prevent damage to, protection of, and restoration for computers and electronic systems. They will ensure and support Navy applications, systems, and networks.

Duties and Responsibilities:

• Provide Authority to Operate (ATO) validation services for RMF Assessment and Authorization (A&A).
• Support multiple DoD and DoN programs and projects in providing the validation service for the RMF Assessment and Accreditation packages.
• Serve as a trusted agent and report to the SCA as the SCA representative for A&A purposes while working with the Program Manager (PM) and User Representative (UR).
• Conduct validation procedures to confirm or establish by testing, evaluation, examining, investigating, or competent evidence that Information Systems assigned Control Correlation Identifiers (CCIs) are implemented correctly and are effective in their application.
• Provide the SCA with an accurate technical evaluation of the application, system or network documenting the security posture, capabilities and vulnerabilities against relevant CCIs and drafting an executive summary documented within the RMF package.
• Provide Navy Qualified Validator (NQV) support in accordance with the Navy RPG and NAVWAR Risk Assessment Guide.
• Provide NQV support for the following activities, documentation, and artifacts in support of obtaining A&A approvals from the appropriate AO:

a. Locate artifacts in the Government A&A reporting tool about the IT being certified.

b. Develop the SAP and custom test procedures which are documented in the SAP.

c. Execute A&A SAPs and document the results and load them into the Government A&A tracking tool.

d. Perform Risk Analysis and document in the SAR (in the Government A&A tracking tool).

e. Develop Executive Summary.

• Be capable of evaluating security solutions to ensure they meet security requirements for processing up to classified information, supervise and/or maintain the operational security posture for an information system or program.
• Ensure any equipment and/or system installed on the platform will meet the cybersecurity requirements.

Minimum Qualifications, Experience & Education Requirements: All Requirements must be clearly annotated on resume. Experience must be shown in work history.

• Must be a certified Navy Qualified Validator (NQV). Must be able to provide NQV Certification ID Number.
• Minimum Five (5) years’ experience with Bachelor’s degree OR seven (7) years with HS/GED of practical experience demonstrating competency in Cybersecurity, Engineering, Test & Evaluation (T&E) or Assessment & Authorization (A&A)/ Certification & Accreditation (C&A) related field.
• Must meet the latest Cybersecurity workforce certification/training in accordance with DoD 8140.1M and subsequent DoD 8140 manual, as applicable.
• Information Assurance Technical (IAT) Level III certification or Information Assurance Manager (IAM) Level III certification required.
• Provide proof of citizenship using the I9 form and supporting documentation.
• Must have or be able to obtain and maintain a Secret security clearance.

Knowledge, Skills, & Abilities (KSA’s)

• Information System Security Specialists shall be familiar with security policies & guidance documents to assist with the preparation and maintenance of process artifacts, traceability documents purposed for compliance with Authority to Operate (ATO) requirements.
• Demonstrate working knowledge of the Risk Management Framework (RMF) process and/or include prior experience with the Defense Information Assurance & Certification Accreditation Process (DIACAP)
• Experience working with Information Assurance tools such as DISA Enterprise Mission Assurance Support Service (eMASS), Assured Compliance Assessment Solution (ACAS) and may be required to hold an Interim Security Control Assessor (SCA) qualification.
• Capable of evaluating security solutions to ensure they meet security requirements for processing up to classified information and supervise and/or maintain the operational security posture for an information system or program
• Experience assisting or developing system security policy and ensuring compliance of change management and configuration control processes.

Compensation and Benefits:

• Competitive Salary (commensurate with experience and qualifications)
• Paid Vacation and Personal Time Off (PTO) / Sick Time
• Eleven (11) paid Federal Holidays
• 401k Matching Plan (eligible participation offered after 90 days of employment)

TAMARACK Technologies, Inc. is an equal opportunity employer that adheres to all policies set forth by the U.S. Equal Employment Opportunity Commission (EEOC). We are an SBA 8a Small Disadvantaged Business (SDB) and a Service-Disabled Veteran Owned Small Business firm committed to applying our extensive experience in protecting our Armed Forces and client’s business interests around the world.

About TAMARACK TECHNOLOGIES INC

TAMARACK Technologies, Inc. is a SBA 8a Small Disadvantaged Business (SDB) and Service-Disabled Veteran Owned Small Business [SDVOSB] firm, formed by a small group of highly regarded industry professionals who are committed to applying their extensive experience in protecting and supporting our nation’s Armed Forces and client’s business interests around the world. We are a full spectrum management and technical solutions provider holistically concentrating on Security and Force Protection, Systems Engineering & Integration, and Information Technology management consulting.