Sabre Systems Inc.
Validator/Vulnerability Management Lead/Information System Security Officer (ISS
Sabre Systems Inc., Lexington Park, Maryland, United States, 20653
Responsibilities
Sabre Systems is hiring for a Validator/Vulnerability Management Lead/Information System Security Officer (ISSO) to support PMA-268 at Patuxent River Naval Air Station in Lexington Park, MD. PMA 268 is responsible for the MQ-25 Stingray unmanned air system. The selected candidate will be responsible for, but not limited to:
Validator
Assess and validate PMA-268 RMF packages (Authorizations to Operate (ATOOs) and Interim Authorizations to Test (IATTs), to include but not limited to:
Coordinate development of the Security Assessment Plan (SAP) with Integrated Product Team (IPT) SSE and system ISSO
Submit SAP for approval
Execute the SAP
Provide a summary of failed controls in eMASS (Risk Assessment)
Complete the Security Assessment Report (SAR)
Provide POA&M update recommendations to the PMA/IPT based on assessment results
Ensure traceability of all vulnerabilities from raw assessment results to the POA&M
Support Continuous Monitoring (ConMon) activities (e.g. annual security reviews, system/changes/Memorandums for the Record (MFRs))
Create consolidated list of mitigation statements for POA&Ms (unclassified) to assist ISSOs with established mitigation statements for common non-compliant security controls
Vulnerability Management Lead
Establish and execute a PMA-268 vulnerability management program, including developing guidance for VRAM record creation and management
Develop a PMA Vulnerability and Patch Management Policy
Coordinate development of System level Vulnerability and Patch Management Plans (VPMP)
NAVAIR Rapid Response Lead for PMA-268
Attend Rapid Response meetings
Coordinate consolidated PMA-268 responses to Orders received (i.e. EXORD, OPORD, TASKORD)
Monitor the NAVAIR Vulnerability Management Channel for notifications daily
Maintain the PMA-268 Cyber Directive Status tracker
Create and maintain a Cyber Directives tracker on SIPR summarizing the orders
Manage PMA-268 Portfolio VRAM records
ISSO
Support PMA-268 Cyber Lead in execution of the PMA-268 Cybersecurity Program
Provide assistance and guidance to PMA-268 ISSOs
Update and sustain PMA RMF Training Slides
Latest RMF guidance
RMF roles and responsibilities flow chart
Assist in the development of eMASS Common Control Packages (CCPs)
Develop RMF security control family templates
Develop PMA Incident Response Plan
Coordinate and provide oversight for all MOU/ISA efforts required in support of cyber authorizations or system use
Qualifications
Requirements:
Must have a bachelor’s degree in a technical or scientific field from an accredited college or university.
Must have at least three (3) years of recent and relevant experience.
Demonstrated experience in an area of engineering expertise is required.
Must have an active DoD Secret Clearance or higher.
Must be a US Citizen
#LI-EN1
Compensation Mid/Journeyman Level: At Sabre Systems, LLC, compensation is based on factors such as location, qualifications, experience, and contract-specific requirements. The general salary range for this position is $60,000-$150,000; however, final compensation will be determined by individual qualifications and applicable contract terms.
Sabre Overview Sabre Systems, LLC, has been providing innovative technological solutions and services for Department of Defense, Federal Civilian, and commercial customers for more than 35 years. We support the evolving areas of advanced communication technologies, cyber, systems and software engineering, and digital transformation.
With over three decades in business, Sabre Systems, LLC remains committed to our small business values and a people-first philosophy. We foster a welcoming, inclusive culture that values diverse perspectives and encourages open communication. Our collaborative environment supports continuous learning and professional growth at all levels. We prioritize the health, well-being, and success of our employees, offering comprehensive, evolving benefits designed to meet their diverse needs. Join us and be part of a thriving, people-driven culture.
We respect the unique perspectives that a diverse workforce of minorities, women, individuals with disabilities, and protected veterans brings not only to our company, but also to our customers. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability or genetic information.
EEO Minorities/Females/Disability/Veterans; VEVRAA Federal Contractor
Beware of employment scams — Sabre Systems will never request payment, extend offers without an interview, or contact you from an email that doesn’t end in @sabresystems.com; always apply directly at https://careers.sabresystems.com/
#J-18808-Ljbffr
Validator
Assess and validate PMA-268 RMF packages (Authorizations to Operate (ATOOs) and Interim Authorizations to Test (IATTs), to include but not limited to:
Coordinate development of the Security Assessment Plan (SAP) with Integrated Product Team (IPT) SSE and system ISSO
Submit SAP for approval
Execute the SAP
Provide a summary of failed controls in eMASS (Risk Assessment)
Complete the Security Assessment Report (SAR)
Provide POA&M update recommendations to the PMA/IPT based on assessment results
Ensure traceability of all vulnerabilities from raw assessment results to the POA&M
Support Continuous Monitoring (ConMon) activities (e.g. annual security reviews, system/changes/Memorandums for the Record (MFRs))
Create consolidated list of mitigation statements for POA&Ms (unclassified) to assist ISSOs with established mitigation statements for common non-compliant security controls
Vulnerability Management Lead
Establish and execute a PMA-268 vulnerability management program, including developing guidance for VRAM record creation and management
Develop a PMA Vulnerability and Patch Management Policy
Coordinate development of System level Vulnerability and Patch Management Plans (VPMP)
NAVAIR Rapid Response Lead for PMA-268
Attend Rapid Response meetings
Coordinate consolidated PMA-268 responses to Orders received (i.e. EXORD, OPORD, TASKORD)
Monitor the NAVAIR Vulnerability Management Channel for notifications daily
Maintain the PMA-268 Cyber Directive Status tracker
Create and maintain a Cyber Directives tracker on SIPR summarizing the orders
Manage PMA-268 Portfolio VRAM records
ISSO
Support PMA-268 Cyber Lead in execution of the PMA-268 Cybersecurity Program
Provide assistance and guidance to PMA-268 ISSOs
Update and sustain PMA RMF Training Slides
Latest RMF guidance
RMF roles and responsibilities flow chart
Assist in the development of eMASS Common Control Packages (CCPs)
Develop RMF security control family templates
Develop PMA Incident Response Plan
Coordinate and provide oversight for all MOU/ISA efforts required in support of cyber authorizations or system use
Qualifications
Requirements:
Must have a bachelor’s degree in a technical or scientific field from an accredited college or university.
Must have at least three (3) years of recent and relevant experience.
Demonstrated experience in an area of engineering expertise is required.
Must have an active DoD Secret Clearance or higher.
Must be a US Citizen
#LI-EN1
Compensation Mid/Journeyman Level: At Sabre Systems, LLC, compensation is based on factors such as location, qualifications, experience, and contract-specific requirements. The general salary range for this position is $60,000-$150,000; however, final compensation will be determined by individual qualifications and applicable contract terms.
Sabre Overview Sabre Systems, LLC, has been providing innovative technological solutions and services for Department of Defense, Federal Civilian, and commercial customers for more than 35 years. We support the evolving areas of advanced communication technologies, cyber, systems and software engineering, and digital transformation.
With over three decades in business, Sabre Systems, LLC remains committed to our small business values and a people-first philosophy. We foster a welcoming, inclusive culture that values diverse perspectives and encourages open communication. Our collaborative environment supports continuous learning and professional growth at all levels. We prioritize the health, well-being, and success of our employees, offering comprehensive, evolving benefits designed to meet their diverse needs. Join us and be part of a thriving, people-driven culture.
We respect the unique perspectives that a diverse workforce of minorities, women, individuals with disabilities, and protected veterans brings not only to our company, but also to our customers. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability or genetic information.
EEO Minorities/Females/Disability/Veterans; VEVRAA Federal Contractor
Beware of employment scams — Sabre Systems will never request payment, extend offers without an interview, or contact you from an email that doesn’t end in @sabresystems.com; always apply directly at https://careers.sabresystems.com/
#J-18808-Ljbffr