Title: Information Security Analyst (RMF)
Location: Webster Outlying Field, St. Inigoes, MD
Clearance: Active Secret Clearance Required
Citizenship Requirement: U.S. Citizen
Req #: 4061
Salary: $100k-$125k Depending on Experience
Summary: Craig Technologies has an opening for an Information Security Analyst with Risk Management Framework (RMF) experience at Webster Outlying Field, St. Inigoes, MD. This candidate will provide Cybersecurity analysis, engineering, and certification and accreditation (C&A)/Assessment and Authorization (A&A) support in accordance with National Institute of Standards and Technology (NIST), RMF, and/or Platform Information Technology (PIT) methodologies.
Detailed Description:- Plan, implement, upgrade and monitor security measures for the protection of complex DoD communication systems and networks.
- Assess IA posture of DoD communications systems and networks in support of system certification and accreditation.
- Maintain and support current and ongoing C&A packages.
- Develop and maintain system IA documentation to support certification of compliance to applicable standards including:
- DoDI 8510.01 Risk Management Framework (RMF) for DoD Systems
- Intelligence Community Directive Number 705
- Sensitive Compartmented Information Facilities and Intelligence Community Directive (ICD) Number 503
- Intelligence Community Information Technology Systems Security Risk Management Certification and Accreditation
Position Requirements:- A Bachelor's degree in Information Technology, Cybersecurity, Data Science, Information Systems, Computer Science, or a related field, is required. Or a minimum of four (4) years experience and a CASP+ certificate in substitute of degree.
- Experience supporting Army RMF packages.
- Experience with DSS RMF process, DISA ACAS, and DoD IA compliance standards.
- Security + CE/DoD 8570.01 IAT-III compliance and knowledge of Navy IT/IA policies and procedures is required.
- Occasional travel maybe required.
- Security Clearance: An active DoD Secret clearance is required to start.
- Applicant selected may be subject to a security investigation and must meet eligibility requirements for access to classified information.
Knowledge and Skills: - Risk Management Framework (RMF) processes.
- Cybersecurity/A&A tools (i.e., eMASS, eMASSter, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio).
- IT systems and subsystems.
- Project management.
- Written and verbal communications.
- Teamwork and collaboration.
- The applicant must be familiar with working on classified systems (i.e., SIPRNet) within secure environments.
The salary range for this role is $100,000 - $125,000; however, Craig Technologies considers several factors when extending an offer for employment, including but not limited to, the role and associated responsibilities, a candidate's work experience, education/training and preferred skills and knowledge.
Note: This job description describes the general nature of the duties and requirements of the job. It is not intended to be an exhaustive list or to limit the supervisor's ability to modify work assignments as appropriate.
