Strategic Resilience Group LLC
Intelligence Security Specialist
Strategic Resilience Group LLC, Virginia Beach, Virginia, us, 23450
Join to apply for the
Intelligence Security Specialist
role at
Strategic Resilience Group LLC Get AI-powered advice on this job and more exclusive features. About the Role
SRG is seeking an Intelligence Security Specialist to manage Risk Management Framework (RMF) activities, focusing on Step 5 authorization and continuous monitoring. Key tasks include conducting STIG assessments, performing vulnerability assessments with ACAS, managing RMF packages via eMASS or XACTA, and developing POA&Ms. You'll also support RMF Step 5 authorizations, provide risk reduction recommendations, manage privileged user compliance, and ensure adherence to Navy and DoD policies on removable media. This role offers the chance to make a significant impact in cybersecurity and RMF. Location and Schedule
On-site only, no telework. Virginia Beach, VA Responsibilities Perform RMF activities throughout all lifecycle phases, with a focus on Step 5 authorization and continuous monitoring support. Conduct STIG assessments using SCAP benchmarks and Evaluate STIG to ensure compliance with DoD security requirements. Perform vulnerability assessments utilizing the Assured Compliance Assessment Solution (ACAS) and recommend mitigation strategies. Utilize eMASS or XACTA for managing RMF packages, documenting artifacts, and supporting ATO processes. Develop and maintain Plans of Action and Milestones (POA&Ms), ensuring accuracy and timely updates. Support RMF Step 5 authorizations in the role of an Information System Security Engineer (ISSE) or Information System Security Officer (ISSO). Provide clear, actionable risk reduction recommendations to technical and non-technical stakeholders. Manage privileged user compliance documentation, Cybersecurity Workforce (CSWF) training, and certification tracking. Research, interpret, and communicate Cyber Task Orders (CTOs), ensuring proper implementation and documentation. Track RMF documentation requirements and coordinate updates with system owners and responsible POCs. Review Interconnection Security Agreements (ISAs) to verify technical details and compliance with ATO boundaries. Maintain tracking, control, and destruction of removable media in accordance with Navy and DoD policies.
Qualifications
Active TS/SCI security clearance. Bachelor's degree in Information Systems, IT, Computer Science, or Computer Engineering plus 10 years of experience, or MS plus 8 years of relevant experience. 15 years of relevant experience can substitute for the degree, but other certifications are required. DoD Approved 8570 Baseline Certification: Category IAT Level II (e.g., CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP, CND, CASP+ CE, CCNP Security, CISA, CISSP or Associate, GCED, GCIH, CCSP). Minimum of 10 years of full-time professional experience in RMF activities. Experience in conducting STIG assessments, vulnerability assessments with ACAS, RMF package management, developing POA&Ms, supporting RMF Step 5, and communicating risk strategies. Experience with ISAs, removable media policies, and cybersecurity compliance.
Application Process
Apply now by submitting your first name, last name, email, phone number, current location, resume, and available start date. You may also upload a cover letter. Optional demographic questions are included for statistical purposes only. #J-18808-Ljbffr
Intelligence Security Specialist
role at
Strategic Resilience Group LLC Get AI-powered advice on this job and more exclusive features. About the Role
SRG is seeking an Intelligence Security Specialist to manage Risk Management Framework (RMF) activities, focusing on Step 5 authorization and continuous monitoring. Key tasks include conducting STIG assessments, performing vulnerability assessments with ACAS, managing RMF packages via eMASS or XACTA, and developing POA&Ms. You'll also support RMF Step 5 authorizations, provide risk reduction recommendations, manage privileged user compliance, and ensure adherence to Navy and DoD policies on removable media. This role offers the chance to make a significant impact in cybersecurity and RMF. Location and Schedule
On-site only, no telework. Virginia Beach, VA Responsibilities Perform RMF activities throughout all lifecycle phases, with a focus on Step 5 authorization and continuous monitoring support. Conduct STIG assessments using SCAP benchmarks and Evaluate STIG to ensure compliance with DoD security requirements. Perform vulnerability assessments utilizing the Assured Compliance Assessment Solution (ACAS) and recommend mitigation strategies. Utilize eMASS or XACTA for managing RMF packages, documenting artifacts, and supporting ATO processes. Develop and maintain Plans of Action and Milestones (POA&Ms), ensuring accuracy and timely updates. Support RMF Step 5 authorizations in the role of an Information System Security Engineer (ISSE) or Information System Security Officer (ISSO). Provide clear, actionable risk reduction recommendations to technical and non-technical stakeholders. Manage privileged user compliance documentation, Cybersecurity Workforce (CSWF) training, and certification tracking. Research, interpret, and communicate Cyber Task Orders (CTOs), ensuring proper implementation and documentation. Track RMF documentation requirements and coordinate updates with system owners and responsible POCs. Review Interconnection Security Agreements (ISAs) to verify technical details and compliance with ATO boundaries. Maintain tracking, control, and destruction of removable media in accordance with Navy and DoD policies.
Qualifications
Active TS/SCI security clearance. Bachelor's degree in Information Systems, IT, Computer Science, or Computer Engineering plus 10 years of experience, or MS plus 8 years of relevant experience. 15 years of relevant experience can substitute for the degree, but other certifications are required. DoD Approved 8570 Baseline Certification: Category IAT Level II (e.g., CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP, CND, CASP+ CE, CCNP Security, CISA, CISSP or Associate, GCED, GCIH, CCSP). Minimum of 10 years of full-time professional experience in RMF activities. Experience in conducting STIG assessments, vulnerability assessments with ACAS, RMF package management, developing POA&Ms, supporting RMF Step 5, and communicating risk strategies. Experience with ISAs, removable media policies, and cybersecurity compliance.
Application Process
Apply now by submitting your first name, last name, email, phone number, current location, resume, and available start date. You may also upload a cover letter. Optional demographic questions are included for statistical purposes only. #J-18808-Ljbffr