12 months ago
This position supports tasking at the NAVAIR Systems Command, Patuxent River, MD. The selected candidate for this position will perform cybersecurity analysis across the eCBM project and IT infrastructure. The candidate will prepare Assessment and Authorization documentation for the development of the Risk Management Framework package for eCBM, and coordinate and collaborate the production and processing of those products with the NAVAIR 6.8.4 IAM, the 22.214.171.124 ISSO, NAVAIR 7.2.6, and the Navy Authorizing Official. The artifacts to be developed include the Security Plan, the System Assessment Plan, the Information System Continuous Monitoring Strategy Plan, Architectural and Boundary Diagrams, the Ports, Protocols, and Services Registration Form, Security Technical Implementation Guides (STIGS), Assured Compliance Assessment Solution (ACAS) scans, Security Content Automation Protocol (SCAP) Compliance scans, the Planned of Action and Milestones (POAM), and the Risk Assessment Report (RAR). The candidate will evaluate releases of IA Vulnerability Alerts and Bulletins as well as other required remediations for eCBM, and provide the information of those updates and upgrades to the System Administrators and track to completion. The candidate will also check the DON Application and Database Management System (DADMS) to ensure eCBM software is Navy approved for configuration management. The candidate will work in a team environment with eCMB Program Management, NAVAIR 6.8.4 Cybersecurity Management, system administrators, programmers, vendors, and test teams under limited supervision.
Education/Experience:/Knowledge, Skills and Abilities: Ten (10) years of certification and accreditation experience are required. A Bachelor’s Degree is preferred but equivalent experience may be substituted. Certifications in accordance with DoD Instruction 8570 are required. Applicant must have a working-level knowledge and proven experience of preparing certification and accreditation documentation that results in an Authority to Operate.
Applicant selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information.