ROLE AND RESPONSIBILITIES The Naval Surface Warfare Center, Philadelphia Division (NSWCPD) seeks an experienced Navy Validator to join our Cybersecurity/Information Assurance (IA) team. The Validator will provide expert support for cybersecurity risk management framework (RMF) activities related to Navy systems and networks, ensuring operational compliance with DoD, Navy, and federal cybersecurity directives and standards.
Key Responsibilities- Serve as primary Validator for RMF packages associated with NSWCPD systems, ensuring all documentation and artifacts meet DoD and Navy cybersecurity requirements.
- Conduct independent security assessments of Information Systems (IS) and Platform IT (PIT) systems, identifying vulnerabilities and recommending remediation strategies.
- Review and validate Security Control Assessment (SCA) documentation, including Security Plans, Security Assessment Reports, and Risk Assessment Reports.
- Coordinate with system owners, Information System Security Managers (ISSMs), Information System Security Officers (ISSOs), and technical teams to validate control implementations and recommend risk mitigations.
- Support the preparation and execution of Authorizations to Operate (ATO) and Interim Authorizations to Test (IATT), ensuring timely package submission and approval.
- Utilize eMASS (Enterprise Mission Assurance Support Service) for RMF package management, assessment, and documentation.
- Remain current with evolving DoD, Navy, and federal regulations, providing thought leadership and process improvements to NSWCPD's cybersecurity program.
- Provide briefings, recommendations, and findings to NSWCPD management and external stakeholders as required.
QUALIFICATIONS AND EDUCATION REQUIREMENTS - Must be US Citizen
- Education: Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related field-or equivalent work experience.
- Certification: Fully Qualified Validator Certificate from the Navy Certification Authority (CA); compliance with DoD 8570/8140 IAM/IAT Level II baseline certification (e.g., CAP; CASP+ CE; CISM; CISSP (or Associate); GSLC; CCISO; or HCISPP.).
- Experience: 10 years professional experience in validation, RMF package development, or other CSWF-related work for Navy or DoD programs.
- Technical Proficiency: Strong working knowledge of DoD RMF process, NIST SP 800-53 controls, DoDI 8510.01, and NAVSEA/NAVWAR cybersecurity policies.
- Security Clearance: Active Secret clearance required; TS/SCI preferred.
- Communication Skills: Excellent written and verbal communication skills, with demonstrated experience generating clear, actionable assessment reports and documentation.
Desired Qualifications- Experience supporting NSWCPD or similar Navy technical/engineering organizations.
- Direct experience with Navy Platform IT/Machinery Control Systems (MCS) or shipboard systems.
- Familiarity with eMASS, ACAS, HBSS, Nessus, and other cybersecurity assessment tools.
- TS/SCI Clearance.
- Process improvement or program management experience within federal cybersecurity environments.
