Posted by: Capstone Corporation on Jun 07, 2021
Job Description:
Overview
Capstone Corporation is currently seeking a Senior Cybersecurity Analyst to provide support of RMF ATO processes. This person will act as a major contributor to the Cybersecurity Team and RMF processes for Cybersecurity Assessment and Authorization to ensure all OPNAV CIO systems obtain and maintain RMF accreditation.
Some telework is available; however this position does require work on-site at The Pentagon.
Responsibilities
Ensures the completion of RMF requirements, and implementation of technical solutions leading to system accreditation. Supports Information Assurance Vulnerability Management (IAVM) management by applying appropriate patches and configuration changes in response to Information Assurance Vulnerability Alerts (IAVA) and Information Assurance Vulnerability Bulletins (IAVB). Supports the development and ongoing maintenance/updates of system Assessment & Authorization (A&A) and other associated Risk Management Framework (RMF) documentation. Reports security violations and incidents to the Information System Security Manager (ISSM). Conducts RMF assessments to support obtaining Authority To Operate (ATO) for new and existing systems. Monitors security controls and assists in implementing strategies for patching, scanning, security reviews, and reauthorizations. Implements practical guidance from Secure Technical Implementation Guidance (STIG) and Security Requirements Guides (SRG). Maintains information with Enterprise Mission Assurance Support Service (eMASS). Provides eMASS support to Cybersecurity team. Ensures OPNAV CIO programs adequately address IA security requirements by maintaining formal assessment activities. Provides IA guidance and documentation.
Basic Qualifications
Minimum education and experience:
Bachelor's degree in a related field. Five (5) years of experience.Minimum qualifications:
Knowledge of eMASS and ACAS. Demonstrated experience applying the Risk Management Framework (RMF) for IT systems. Demonstrated experience in Information Assurance (IA) controls analysis, risk assessments, risk mitigation analysis, or developing contingency plans. Knowledge of Authorization Condition Follow-up (ACF), Boundary Change Request (BCR), and RMF Bridge Conversion (RBC) activities are a plus.Certification:
Minimum IAT Level III certification (e.g. CISSP, CASP, etc.)Clearance:
Secret clearance.
#LI-CAP
EEO statement
EOE minority/female/disability/veteran
Preferred Qualifications (Text Only)
- Knowledge of NIST RMF Special Publications - DoD/Navy Cybersecurity, information assurance, RMF experience.
HR. Website URL:
https://www.capstonecorp.com/careers