Peraton
RMF Program Lead
US
Responsibilities Peraton is seeking an RMF Program Lead for the Department of Defense (DoD). The successful candidate will be responsible for the overall management and execution of RMF tasks, providing expert guidance and direction to a team of RMF professionals. Provide expert guidance on RMF principles (NIST SP 800-37, 800-53) and oversee the consistent application of RMF processes across all DHRA systems. Lead a team of RMF specialists, providing mentorship and ensuring the quality of deliverables such as System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms). Serve as the primary point of contact for all RMF-related matters, communicating with stakeholders and ensuring compliance with relevant regulations and policies.
What You\'ll Do:
Management and Execution of RMF Tasks:
Oversee and manage the overall execution of RMF activities, ensuring adherence to established principles and standards (NIST SP 800-37 and 800-53).
Expert Guidance on RMF Principles:
Provide advanced expertise on RMF processes to ensure consistent application of security controls, policies, and procedures across all DHRA systems.
Leadership and Mentorship:
Lead and mentor a team of RMF professionals, ensuring the delivery of high-quality documentation and outputs such as SSPs, SARs, and POA&Ms.
Quality Assurance:
Ensure the accuracy, quality, and completeness of all deliverables related to the RMF process, driving continuous improvement and compliance.
Stakeholder Liaison:
Act as the primary point of contact for all RMF-related matters, facilitating communication between internal teams, leadership, and external stakeholders.
Regulatory and Policy Compliance:
Ensure that all RMF activities comply with relevant regulations, policies, and guidelines, maintaining a secure operational posture for DHRA systems.
Program Oversight:
Oversee the integration of RMF processes across the organization, identifying areas for improvement and fostering a culture of cybersecurity awareness and compliance.
Knowledge, Skills, and Abilities
Comprehensive Knowledge of RMF Processes:
Expertise in RMF (NIST SP 800-37 and 800-53) to ensure consistent implementation of security controls.
Leadership and Team Management:
Strong leadership and mentoring skills to guide a team of RMF professionals.
Technical Understanding of Information Security:
In-depth knowledge of information systems security principles, methodologies, and technologies.
Regulatory Compliance Expertise:
Familiarity with federal cybersecurity mandates including FISMA, FedRAMP, and DoD/DISA policies and standards.
Risk Analysis and Mitigation:
Ability to perform risk assessments, identify vulnerabilities, and provide actionable mitigation strategies.
Effective Communication Skills:
Ability to convey complex cybersecurity concepts to stakeholders at all levels.
Documentation Development and Review:
Proficient in creating, reviewing, and validating RMF deliverables such as SSPs, SARs, and POA&Ms.
Project Management and Program Oversight:
Skilled in managing large-scale cybersecurity projects with timelines and resources.
Automation and Process Improvement:
Ability to leverage tools to automate RMF processes and establish performance metrics.
Analytical and Problem-Solving Skills:
Strong analytical mindset to identify security challenges and recommend improvements.
Qualifications Required Qualifications
Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD
Must be a US Citizen
Clearance Requirement: Top Secret
Certified Information Security Manager (CISM)
CompTIA Security+
ITIL Certification
Desired Qualifications
RMF-Specific Certification - Certified Authorization Professional (CAP)
Certified Information Systems Security Professional (CISSP)
Certified Ethical Hacker (CEH)
Project Management Professional (PMP)
Cloud-Specific Certifications: AWS Certified Security - Specialty or similar cloud certifications (e.g., Azure, Google Cloud) for organizations leveraging cloud technologies in RMF processes.
NIST-Specific Training
Peraton Overview Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world\'s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted solutions and technologies to protect our nation and allies. Visit peraton.com to learn more.
Target Salary Range $80,000 - $128,000. This represents the typical salary range for this position. Salary is determined by factors including scope, responsibilities, experience, education, knowledge, skills, and location. Depending on the position, overtime, shift differential, and a discretionary bonus may apply.
EEO EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.
#J-18808-Ljbffr
Responsibilities Peraton is seeking an RMF Program Lead for the Department of Defense (DoD). The successful candidate will be responsible for the overall management and execution of RMF tasks, providing expert guidance and direction to a team of RMF professionals. Provide expert guidance on RMF principles (NIST SP 800-37, 800-53) and oversee the consistent application of RMF processes across all DHRA systems. Lead a team of RMF specialists, providing mentorship and ensuring the quality of deliverables such as System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms). Serve as the primary point of contact for all RMF-related matters, communicating with stakeholders and ensuring compliance with relevant regulations and policies.
What You\'ll Do:
Management and Execution of RMF Tasks:
Oversee and manage the overall execution of RMF activities, ensuring adherence to established principles and standards (NIST SP 800-37 and 800-53).
Expert Guidance on RMF Principles:
Provide advanced expertise on RMF processes to ensure consistent application of security controls, policies, and procedures across all DHRA systems.
Leadership and Mentorship:
Lead and mentor a team of RMF professionals, ensuring the delivery of high-quality documentation and outputs such as SSPs, SARs, and POA&Ms.
Quality Assurance:
Ensure the accuracy, quality, and completeness of all deliverables related to the RMF process, driving continuous improvement and compliance.
Stakeholder Liaison:
Act as the primary point of contact for all RMF-related matters, facilitating communication between internal teams, leadership, and external stakeholders.
Regulatory and Policy Compliance:
Ensure that all RMF activities comply with relevant regulations, policies, and guidelines, maintaining a secure operational posture for DHRA systems.
Program Oversight:
Oversee the integration of RMF processes across the organization, identifying areas for improvement and fostering a culture of cybersecurity awareness and compliance.
Knowledge, Skills, and Abilities
Comprehensive Knowledge of RMF Processes:
Expertise in RMF (NIST SP 800-37 and 800-53) to ensure consistent implementation of security controls.
Leadership and Team Management:
Strong leadership and mentoring skills to guide a team of RMF professionals.
Technical Understanding of Information Security:
In-depth knowledge of information systems security principles, methodologies, and technologies.
Regulatory Compliance Expertise:
Familiarity with federal cybersecurity mandates including FISMA, FedRAMP, and DoD/DISA policies and standards.
Risk Analysis and Mitigation:
Ability to perform risk assessments, identify vulnerabilities, and provide actionable mitigation strategies.
Effective Communication Skills:
Ability to convey complex cybersecurity concepts to stakeholders at all levels.
Documentation Development and Review:
Proficient in creating, reviewing, and validating RMF deliverables such as SSPs, SARs, and POA&Ms.
Project Management and Program Oversight:
Skilled in managing large-scale cybersecurity projects with timelines and resources.
Automation and Process Improvement:
Ability to leverage tools to automate RMF processes and establish performance metrics.
Analytical and Problem-Solving Skills:
Strong analytical mindset to identify security challenges and recommend improvements.
Qualifications Required Qualifications
Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD
Must be a US Citizen
Clearance Requirement: Top Secret
Certified Information Security Manager (CISM)
CompTIA Security+
ITIL Certification
Desired Qualifications
RMF-Specific Certification - Certified Authorization Professional (CAP)
Certified Information Systems Security Professional (CISSP)
Certified Ethical Hacker (CEH)
Project Management Professional (PMP)
Cloud-Specific Certifications: AWS Certified Security - Specialty or similar cloud certifications (e.g., Azure, Google Cloud) for organizations leveraging cloud technologies in RMF processes.
NIST-Specific Training
Peraton Overview Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world\'s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted solutions and technologies to protect our nation and allies. Visit peraton.com to learn more.
Target Salary Range $80,000 - $128,000. This represents the typical salary range for this position. Salary is determined by factors including scope, responsibilities, experience, education, knowledge, skills, and location. Depending on the position, overtime, shift differential, and a discretionary bonus may apply.
EEO EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.
#J-18808-Ljbffr