NexThreat
SSO/RMF A&A Support - ZTA
NexThreat is seeking an experienced ISSO/RMF (Risk Management Framework) A&A (Assessment and Authorization) Support Specialist to support the Government Publishing Office's (GPO) IT Security division. The candidate will assist in developing, maintaining, and advancing the GPO's Zero Trust Architecture (ZTA) by conducting comprehensive security assessments, system authorizations, and continuous monitoring activities in accordance with federal standards and EO 14028. Key Responsibilities: RMF Assessment & Authorization Support: Assist in conducting security assessments of GPO information systems for RMF compliance. Facilitate preparation, documentation, and execution of Security Authorization packages, including System Security Plans (SSP), Security Assessment Reports (SAR), and Plan of Actions & Milestones (POA&Ms). Support authorization activities, including the ongoing monitoring and authorization of systems within the GPO environment. Security Framework & ZTA Development: Contribute to the development and maturation of the GPO's Zero Trust Architecture, aligning security practices with EO 14028 requirements. Develop and recommend security controls and strategies to improve cyber hygiene and security posture. Tool Support & Maintenance: Support operation, maintenance, and upgrades of key security and assessment tools, including but not limited to: Microsoft Sentinel Microsoft Azure Microsoft Defender for Endpoint (DfE) Xacta 360/IO Zscaler FedRamp compliance tools Cloudflare NetWitness Tenable IO Nexpose Armis Trellix HX/CM ServiceNow Qualifications & Experience: Education & Certifications: Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, or related field (or equivalent experience). Relevant certifications preferred: CAP, CISSP-ISSAP, Security+, ISO certifications, or equivalent. Experience: Minimum of 3 years' experience with RMF, FISMA, and security assessment processes supporting government or enterprise systems in a GCC-H/GCC environment. Strong understanding of cybersecurity frameworks, NIST 800-53 controls, and federal compliance requirements. Technical Skills: Hands-on experience with RMF assessment activities, including system categorization, control implementation, testing, and authorization. Proficiency with security tools listed above and integrating them within a security assessment and monitoring framework. Ability to analyze and interpret security data, prepare reports, and communicate findings effectively. NexThreat is dedicated to our employees' well-being, growth, and satisfaction. We offer a competitive compensation package that supports and enables our corporate commitment to excellence. Our extensive benefits include: Medical, Dental, and Vision Insurance 401(k) Plan with Matching Contributions Life and Accidental Death & Dismemberment Insurance Up to Five weeks of PTO Short-Term and Long-Term Disability Insurance 529 College Savings Plan Employee Learning Program with Tuition Reimbursement Flexible Spending Account (FSA) and Health Savings Account (HSA) Plans Profit Sharing Employee Referral Program $5,000 Company-Paid Travel/Vacation after 5 Years of Service Equal Opportunity and Career Advancement NexThreat is committed to being an equal opportunity employer. We provide a clear pathway for career development, ensuring that all employees have the opportunity to grow and advance within the company. Fair Compensation Our commitment to fair compensation is reflected in our competitive salary packages. NexThreat's internal efficiencies enable us to offer not only fair wages but also additional financial benefits such as spot and merit bonuses, profit sharing, commuting benefits, and comprehensive insurance coverage. Reward and Recognition We believe in recognizing and rewarding our employees for their hard work and dedication. By regularly collecting customer feedback, we identify opportunities to provide spot bonuses, gifts, and other forms of recognition, ensuring our team members feel valued and appreciated. Vacation Benefits Understanding the importance of work-life balance, NexThreat offers a unique vacation benefit. Every 5 years, employees receive $5,000 towards a vacation for themselves and their families. We strive to create a supportive and rewarding work environment where our employees can thrive both personally and professionally.
NexThreat is seeking an experienced ISSO/RMF (Risk Management Framework) A&A (Assessment and Authorization) Support Specialist to support the Government Publishing Office's (GPO) IT Security division. The candidate will assist in developing, maintaining, and advancing the GPO's Zero Trust Architecture (ZTA) by conducting comprehensive security assessments, system authorizations, and continuous monitoring activities in accordance with federal standards and EO 14028. Key Responsibilities: RMF Assessment & Authorization Support: Assist in conducting security assessments of GPO information systems for RMF compliance. Facilitate preparation, documentation, and execution of Security Authorization packages, including System Security Plans (SSP), Security Assessment Reports (SAR), and Plan of Actions & Milestones (POA&Ms). Support authorization activities, including the ongoing monitoring and authorization of systems within the GPO environment. Security Framework & ZTA Development: Contribute to the development and maturation of the GPO's Zero Trust Architecture, aligning security practices with EO 14028 requirements. Develop and recommend security controls and strategies to improve cyber hygiene and security posture. Tool Support & Maintenance: Support operation, maintenance, and upgrades of key security and assessment tools, including but not limited to: Microsoft Sentinel Microsoft Azure Microsoft Defender for Endpoint (DfE) Xacta 360/IO Zscaler FedRamp compliance tools Cloudflare NetWitness Tenable IO Nexpose Armis Trellix HX/CM ServiceNow Qualifications & Experience: Education & Certifications: Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, or related field (or equivalent experience). Relevant certifications preferred: CAP, CISSP-ISSAP, Security+, ISO certifications, or equivalent. Experience: Minimum of 3 years' experience with RMF, FISMA, and security assessment processes supporting government or enterprise systems in a GCC-H/GCC environment. Strong understanding of cybersecurity frameworks, NIST 800-53 controls, and federal compliance requirements. Technical Skills: Hands-on experience with RMF assessment activities, including system categorization, control implementation, testing, and authorization. Proficiency with security tools listed above and integrating them within a security assessment and monitoring framework. Ability to analyze and interpret security data, prepare reports, and communicate findings effectively. NexThreat is dedicated to our employees' well-being, growth, and satisfaction. We offer a competitive compensation package that supports and enables our corporate commitment to excellence. Our extensive benefits include: Medical, Dental, and Vision Insurance 401(k) Plan with Matching Contributions Life and Accidental Death & Dismemberment Insurance Up to Five weeks of PTO Short-Term and Long-Term Disability Insurance 529 College Savings Plan Employee Learning Program with Tuition Reimbursement Flexible Spending Account (FSA) and Health Savings Account (HSA) Plans Profit Sharing Employee Referral Program $5,000 Company-Paid Travel/Vacation after 5 Years of Service Equal Opportunity and Career Advancement NexThreat is committed to being an equal opportunity employer. We provide a clear pathway for career development, ensuring that all employees have the opportunity to grow and advance within the company. Fair Compensation Our commitment to fair compensation is reflected in our competitive salary packages. NexThreat's internal efficiencies enable us to offer not only fair wages but also additional financial benefits such as spot and merit bonuses, profit sharing, commuting benefits, and comprehensive insurance coverage. Reward and Recognition We believe in recognizing and rewarding our employees for their hard work and dedication. By regularly collecting customer feedback, we identify opportunities to provide spot bonuses, gifts, and other forms of recognition, ensuring our team members feel valued and appreciated. Vacation Benefits Understanding the importance of work-life balance, NexThreat offers a unique vacation benefit. Every 5 years, employees receive $5,000 towards a vacation for themselves and their families. We strive to create a supportive and rewarding work environment where our employees can thrive both personally and professionally.