To begin the application process, please enter your email address.
Company Contact Info
- North Charleston, SC
Sorry, we cannot save or unsave this job right now.
Report this Job
Saving Your Job Alert
Job Alert Saved!
Could not save Job Alert!
You have too many Job Alerts!
Email Send Failed!
DOD Secret Cyber Security A&A Analyst Level 5 North Charleston
Nesco Resource • North Charleston, SC
Posted 1 day ago
Opportunity for contract-to-hire based on employee performance, employee attendance and dependability, and client business needs.
•** is seeking candidates with Risk Management Framework (RMF) experience located near North Charleston, SC.
Primary responsibility is to perform tasks related to Assessment & Authorization (A&A) and cybersecurity under the Defense Health Agency (DHA) to obtain and maintain Authorizations to Operate (Client) for assigned DoD medical systems (i.e., applications, networks, devices). This position will be a part of a team developing recommended courses of action needed to transition current policies and procedures to the DHA RMF-approved processes.
' Serve as Senior Information Systems Security Manager (ISSM) for enclaves under the purview of the Charleston Air Force Base
' Facilitate movement of information system enclaves through the DHA RMF process to achieve Client
' Ensure continuous compliance with NIST, DHA, and DoD security requirements through continuous monitoring
' Oversee/conduct risk and vulnerability assessments of information systems to identify vulnerabilities, risks, and protection needs
' Actively participate in working group meetings to identify, plan, and execute strategies in response to emerging cybersecurity/RMF policies
' Maintain awareness and knowledge of evolving security and risk management standards and communicate and apply relevant changes to existing processes
' Participate in review, update, and/or development of RMF documentation to include Security Plans, Implementation Plans, Plans of Action and Milestones (POA&Ms), and Risk Assessment Reports
' Oversee assessment of system compliance against NIST, DoD, and DHA security requirements to include the NIST 800-53 controls and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
' Produce evidence to support compliance status of NIST, DoD, and DHA security requirements
' Coordinate with other system SMEs to identify and develop authorization boundary diagrams,
' architecture diagrams, and hardware and software inventories
' Attend and participate in regular A&A status meetings to facilitate progress and address potential issues of RMF system efforts
' Provide solutions to complex problems that require the regular use of expertise and creativity. Problems are broadly defined and solutions require the continuation of specialized theories and knowledge
' BS degree and fifteen (15) years of experience with Cybersecurity / Information Technology, or eighteen (18) years of hands-on experience with Cybersecurity / Information Technology
' Demonstrated efficiency and experience with RMF process (experience under DHA a plus)
' Demonstrated knowledge of package development, including POA&Ms, Security Plans, Risk Assessments, system/site policies, procedures, and processes, architecture diagrams, and hardware and software inventories
' In-depth familiarity with NIST and FIPS publications
' General knowledge of the following:
o Assured Compliance Assessment Solution (ACAS)
o DISA STIGs/SRGs validation
o NIST 800-53 control validation
o Continuous Monitoring and Risk Scoring (CMRS)
o RMF policy development and strategy implementation
o BIOMED experience (former technician, physician, engineer, etc.) installing, testing, using, maintaining, designing, and/or modifying medical equipment and applications
' Excellent customer service and organization skills
' Excellent oral and written communication skills
' Active DoD Secret security clearance
' DoD 8570-compliant (CompTIA Security+ certified)
' Ability to obtain OS certification or complete approved related training within 180 days of hire
' Ability to travel up to 25-35% **Note: Position is remote-based; however, applicant must be located within or near the North Charleston, SC region and able to attend local meetings/events on site as needed.
Additional Qualifications a Plus:
' Experience with eMASS
' Knowledge in one or more of the following technologies:
o Medical devices
o Network Devices
o Databases MS SQL, Oracle
o VMWare Virtualization
Is Driving Required?
Export Control Technology:
Full Time / Part Time?
Street Address of Work Location
US Security Clearance Required?
FAA screening required?
DOD clearance required?
DOE clearance required?
SCA Eligible Position?
Will worker be permitted to submit expenses?
Special Requirements/ Certifications:
' Candidate must be a U.S. citizen.
' Ensure candidate experience relates to that provided in job description and experience is clearly identifiable on resume for client review.
' Candidate is needed for full-time work. Ensure this position would not be secondary or supplemental employment. Candidate needed 8 hours/day M-F.
' Opportunity for contract-to-hire based on employee performance, employee attendance and dependability, and client business needs.
' Opportunity for telework.
' Start date will be moved up as needed in order for selected candidates to start ASAP once onboarding is completed/clear. Ensure candidates are available to start right away once onboarding is complete.
' Worker will use Deltek for weekly timesheet reporting. It is imperative that the registration is completed as soon as possible after receipt of registration invitation. Your attention to this process will eliminate delays in receipt of employee hours and invoice creation.
' Client manager will conduct phone interview.
Nesco Resource is an equal employment opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, or veteran status, or any other legally protected characteristics with respect to employment opportunities.