Cybersecurity RMF Analyst
Description:
Job Description
Boarhog is in the market for a mid-level Cybersecurity Analyst in San Diego, CA. with an active SECRET level security clearance to support a U.S. Navy systems acquisition program office in the execution of Risk Management Framework (RMF), with Federal Information Security Management Act (FISMA) and government Technical Authority products and processes compliance. If you currently do not hold at least an active SECRET level security clearance, please do not apply. No exceptions.
The U.S. government client requires Information System Security Engineering Support Services in order to acquire and sustain Information Warfare systems and technologies Cybersecurity to ensure strong authentication, data integrity, confidentiality, non-repudiation, and availability of interoperable Command and Control, Communications, Computers, and Intelligence (C4I) capabilities.
The Cybersecurity Analyst will be expected to work with systems engineers in analyzing current and emerging operational and functional requirements (in the context of Cybersecurity) of existing systems as well as capabilities under development and assist with the development of engineered solutions that adhere to RMF cybersecurity compliance requirements, evaluating Commercial-Off-The-Shelf (COTS) and other technologies for applicability to cybersecurity compliance.
Successful candidates will be expected to immediately perform Risk Management Framework (RMF) duties, and participate in the following activities:
Support the program office’s Assistant Program Manager for Cyber Security (APM-CS) in maintaining the authorization of assigned systems, including continuous monitoring vulnerability management
Prepare and present risk assessment briefs, including High-Risk Escalation, for executives
Collaborate with Validators, Information Systems Security Engineers and supported Information Systems Security Manager (ISSM).
Coordinate with Systems Engineering to authorize system upgrades
Perform duties of the RMF Information Systems Security Engineer role as defined by the Navy’s RMF Process Guide (RPG)
Perform assigned duties of the RMF ISO/PM role as defined by the Navy’s RPG
Perform preliminary security assessments of components, subsystems, and systems, including reviewing and/or executing Nessus Vulnerability Scans, Security Technical Implementation Guide (STIG) Benchmarks, manual STIG testing, and NIST SP 800-53a assessment procedures
Responsibilities also include being prepared to answer routine A&A questions during meetings, gather data and perform the analysis required to close action items, and document recommendations and decisions reached.
Qualifications, Experience, and Certifications:
BA or BS degree
MUST have at least a current CompTIA Security+ certification
MUST have at least three (3) years of RMF experience
MUST have an active SECRET level security clearance
Cyber Security Workforce technical certification
Examining system architectures, engineering processes, and cybersecurity functionality to include implementation, reviewing cross system interfaces and systems integration for feasibilities and vulnerabilities, assisting with and observing test and evaluation
Verification and validation, engineering analysis, technical documentation analysis, reviewing software and hardware designs for cybersecurity risks or issues and recommend mitigation and resolution strategies.
Proficiency with all phases of the RMF transformation and the activities to transition a system from DIACAP to RMF
Assuring the system security posture is attained and maintained in accordance with DoD and DoN Information Assurance (IA) Technical Authority directives, Naval Information Forces (NAVIFOR) and Type Commander (TYCOM) operational guidance
Proficiency with Enterprise Mission Assurance Support Service (eMASS)
Desired Qualifications, Certifications, and Discriminators:
Certified Information Systems Security Professional (CISSP) or equivalent certification
Prior Federal Public Sector (preferably Navy) Acquisition Program Management Office experience
Prior experience authorizing RMF High Impact, classified systems
Knowledge of Fleet operations, IT network security, software and hardware security engineering, and cybersecurity regulations, policy, and strategy
Eligible for a Top Secret / Sensitive Compartmented Information clearance (TS/SI/TK/G/HCS)
Navy Qualified Validator II or III
Currently reside in, or agree to move to, a Small Business Administration (SBA) designated Historically Underutilized Business Zone (HUBZone) area (see SBA.gov website for HUBZone map)
BOARHOG BENEFITS:
Boarhog has over 13 years of defense industrial base steady, controlled growth and profitability, offering our full-time associates a remarkable compensation package, including:
Competitive salary and opportunities for additional compensation.
Greater Self-Determination
Medical/Dental/Vision Health Benefits.
Company 401K contribution.
Vacation.
Health savings account.
Stipend for residing in a HUBZone location (
Relocation or small signing bonus, and earned a performance bonus.
We thrive in a welcoming culture within a completely flat organization, with a demonstrated vested interest in associates' personal and professional goals and aspirations, taking pride in the resulting exceedingly low associate turnover rate. As a successful and respected SBA Certified Service Disabled Veteran Owned (SDVO) and Historically Underutilized Business Zone (HUBZone) small business, there is no fat on the Boarhog, translating to a great degree of self-determination... nobody with Boarhog has ever and will never make a living watching other associates do work. The company Chief Executive Managing Member and Majority Owner co-founded Boarhog and actively engages in the day-to-day operations and growth objectives, and also periodically performs direct on government and commercial contracts. Pigs in the breakfast... skin-in-the-game, and the story behind our logo. Come join us!
E04JI800rmcl407i99z
Full-time