This listing was posted on ApplicantPool.
Risk Management Framework SME
Location:
San Antonio, TX
Description:
Risk Management Framework SME Location : San Antonio Workplace: Primarily telework Employment Type : Full Time, Exempt Summary of Position The Risk Management Framework (RMF) Subject Matter Expert (SME) support several programs in their pursuit of Approvals to Operate. This includes advising the government team on how best to categorize the system, engage senior leaders to advocate for strategies to success, select/implement controls, and develop/implement a continuous monitoring strategy.Our team is looking for a proactive, knowledgeable RMF SME who is comfortable engaging with varying parties to drive success for our team, rather than simply someone familiar with eMASS that can update artifacts adequately.The primary contract supported for the RMF SME will be a contract with Defense Manpower Data Center (DMDC) in the National Capital Region implementing the next-generation RAPIDS Station. Duties/Responsibilities Support development of a robust RMF package necessary to achieve and maintain a full, multi- year Authority to Operate (ATO).Maintain the system registration and record within eMASS to support the RMF process.Assess the on-going Cyber Security (CS) posture of the system and identify mitigations for risks.Conduct applicable scans using Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP), and other DoD-approved tools to determine current security posture of the system. Scans will be accomplished nominally every 90 days.Assist with eMASS entries on all required and applicable RMF controls to include development and maintenance of the Security Plan and required artifacts and documentation.Conduct analysis to ensure the proper Security Technical Implementation Guides (STIGs) for each system component are applied.Ensure that all findings are properly documented in the Plan of Action and Milestones (POA&M) on an on-going basis.Create and/or refine the correct policies, procedures, and artifacts necessary to ensure applicable controls are met.Assist with the scheduling and coordination of a Security Compliance Assessor Validation (SCA- V) to perform an independent 3rd party evaluation in support of an accreditation recommendation: ATO and/or ATO with conditions. Perform other job-related duties as assigned Required QualificationsMust be at least 18 years oldActive Secret DoD Security ClearanceDoD 8140 IAT Level certification (e.g. Sec+)Citizenship verification required due to Export Control compliance. A "US Person" is defined by 22 C.F.R. ยง 120.15 which includes US Citizens, lawful permanent residents, certain refugee or asylee designations.Strong analytical skills to ensure proper levels of risk for the configuration of the systemStrong understanding of Cyber Security and RMF policies and guidelines such as DoDD 8500.1, DoDI 8500.2, DoDI 8510.01, DoD 8570.01-M, and NIST SP800-53.Experience working with program managers or senior leaders to engage directly on strategic discussions regarding system categorization, implementation of controls, etc.Solid understanding of eMASS and the ATO process to include direct work at each step of the process from system categorization through continuous monitoringAbility to work in a team focused, dynamic environmentPhysical Requirements: Frequently remain in stationary position, frequently operate computers and other office equipment, frequently communicate to exchange information with people via voice and/or written language, occasionally carry and/or lift items up to 20 pounds, and occasionally move about the office to access office equipment Preferred Qualifications Bachelor's degree in related fieldExperience conducting A&A actions on Cloud systems and/or commercial systems with DCSA
Company:
X Technologies
Posted:
December 26 2023 on ApplicantPool
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to ApplicantPool
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: Risk Management Framework SME
Risk Management Framework SME is a Executive Manager Job at X Technologies located in San Antonio TX. Find other listings like Risk Management Framework SME by searching Oodle for Executive Manager Jobs.
Risk Management Framework SME is a Executive Manager Job at X Technologies located in San Antonio TX. Find other listings like Risk Management Framework SME by searching Oodle for Executive Manager Jobs.