Cyber Security/RMF Specialist - PISSM

Job Description

Job Description

Nemean Solutions, LLC is looking for a Cyber Security / RMF Specialist - PISSM.

The Contractor shall provide expertise in the review and analysis of Army documentation and other system information in the eMASS system associated with Army SIPRNet and NIPRNet RMF packages.

The Contractor's responsibilities shall include the following areas :

• Conduct detailed comprehensive reviews of Army Authorization packages.
• Detailed analysis of Network topology
• Data flow diagrams
• Hardware and Software lists
• Tenant List / Tenant Security Plans (TSP)
• System Security Plan (SSP)
• System Assessment Report
• Plan of Action & Milestones (POA&M)
• Privacy statements
• Ports, Protocols, and Services (PPS) registrations
• Host-Based Security System (HBSS) compliance
• Information Assurance Vulnerability Management (IAVM) compliant
• Security Technical Implementation Guides (STIGS)
• Supporting artifacts for security controls

Advise Information System Owners / Program Managers (ISO / PM) on correcting and revising required RMF documentation and information input into the eMASS system before final submission to the Program Information System Security Manager (P-ISSM) Provide prompt, courteous, and quality customer support in a professional manner.

Participate in meetings regarding RMF reviews and other directly related A&A issues. Make recommendations to the P-ISSM on the issuance of accreditation decisions.

Coordinate with 7th SC (T) P-ISSM to ensure that there are consistent methods, processes and configurations regarding RMF packages throughout the area of responsibility (AOR).

Qualifications :

• Possess a secret security clearance
• Possess a minimum of three (3) years' experience conducting security control reviews and assessment (RMF experience is preferred)
• Have expert knowledge of Army networking, topology, data flows, and regulatory requirements.
• Have expert knowledge of Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG).
• Be certified in accordance with DoD 8140 paragraph C2.3.9 for Contractor personnel supporting cybersecurity functions.
• Have expert knowledge in reviewing RMF assessment findings and assessing associated security risks.
• Have expert knowledge in reviewing Plan of Action & Milestones (POA&M) to assess adequacy of remediation and mitigation strategies embodied therein.
• Have knowledge of the Risk Management Framework (RMF) process and the RMF Knowledge Service.
• Have knowledge of the Assured Compliance Assessment Solution (ACAS)
• Have knowledge of the Enterprise Mission Assurance Support Services (eMASS).
• Have knowledge of the security controls in NIST Special Publication 800-53 (current revision).

Special Qualifications :

The Contractor shall be responsible for ensuring personnel possess and maintain a current IAM Level II professional certification during the performance of this contract in accordance with DoDD 8140.

01. The Contractor shall possess at least one of the following certifications : Certified Authorization Professional (CAP), CompTIA Advanced Security Professional (CASP), GIAC Security Leadership Certificate (GSLC), Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP).

Support Hours : The Government requires support from 0700 - 1700, Monday through Friday, excluding Federal holidays.

Place of Performance : The Contractor's place of duty shall be in a Government provided office environment located at 7th Signal Command (Theater), 423 22d Street, Fort Eisenhower, Building 21715, Fort Eisenhower, Georgia.

Travel : The applicant may be required to travel to other locations within CONUS and OCONUS locations in support of this contract.

Benefits : Medical, Dental, and Vision insurance plans, Paid Time Off, sick leave, 401k Retirement Savings plan with company match, and more.

Equal Opportunity Employer : All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity, or any other characteristic protected by law.

COVID-19 considerations : Nemean Solutions follows all CDC recommendations and US Military Installation guidelines for COVID-19 prevention.

Nemean Solutions follows all Department of Labor laws pertaining to COVID-19.

Company Overview : Nemean Solutions is a certified SBA 8(a) Native Hawaiian Organization (NHO) and veteran-operated company providing advanced Military Intelligence, Enterprise and Cloud IT services, Cybersecurity, Special Operations Forces (SOF) Exercise and Training, and niche Program Support and Professional Services to Federal and State Agencies supporting the US Government Defense, Intelligence and Aerospace sectors.

Nemean Solutions is proud to be a Veteran friendly employer and provides Equal Employment Opportunity (EEO) to all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability status, genetic information, marital status, ancestry, protected veteran status, or any other characteristic protected by applicable federal, state, and local laws.

Equal Opportunity for VEVRAA Protected Veterans. Nemean Solutions, LLC will not discriminate against employees and job applicants who inquire about, discuss, or disclose compensation information.

Nemean Solutions is headquartered in Sierra Vista, AZ.

Job Posted by ApplicantPro