Today
Secret
Mid Level Career (5+ yrs experience)
$95000 - $105000 per year
No Traveling
Unspecified
Norfolk, VA (On/Off-Site)
Falconwood is a woman-owned / veteran-owned company providing consultation and programmatic support to Department of Defense (DoD) Information Technology (IT) initiatives and programs. We provide expert advice and consultation on a diverse range of IT subjects, focusing on acquisition, cybersecurity, engineering, logistics, and process development.
The Cyber Security Analyst will support the USFF N6 Directorate Fleet Enterprise Support Team, Package Submitting Office (PSO) in the end-to-end Risk Management Framework (RMF) Assessment & Authorization (A&A) process for Ashore and Afloat, providing overarching expertise for the A&A process. This effort will highlight and track significant physical, policy and or network security issues, improving network security and awareness on Naval networks world-wide.
* Review A&A package submissions to ensure system/network architectures and technical / non-technical operating features adequately protect and defend against unauthorized access, ensure systems availability, and meet DoD/Navy IA/CS implementation policy requirements and data protection safeguards.
* Conduct IA/CS compliance and A&A documentation validation assessments for Naval networks, legacy applications, and systems.
* Assist in the development or updates to existing, A&A and IA/CS documentation to ensure complete documentation in accordance with DoD A&A and IA/CS policy.
* Coordinate corrections for errors, information omissions, and shortfalls in A&A documentation packages.
* Communicate feedback and coordinate corrections with subordinate commands within five business days and validate prior to processing.
* Assist in the development procedures to support A&A workflow processes, criteria needed to facilitate processes and Navy Authorizing Official (NAO) accreditation decision milestones.
* Provide representation in meetings to include providing meeting minutes and supporting follow-up tasks.
* Assist in the development of point papers, naval messages, presentations, briefings, and other forms of written documentation on an as needed basis to support A&A and IA/CS functions.
* Assist in the development of Standard Operating Procedures (SOPs), checklists, workflow process charts, forms, POC lists, and other documentation needed to support NAO processes and related A&A and IA/CS functions and keep it up to date.
* Compile and analyze data for USFF leadership review for IA/CS readiness and compliance.
* Identify areas where commands should focus IA/CS efforts as result of or in support of inspections.
* Provide support for all stages involved during inspections issues to include inspection finding adjudication in Vulnerability Management System (VMS), assessing statistical data/metrics of post inspection adjudication status, and Security Technical Implementation Guide (STIG) review and interpretation.
* Track and report compliance for all stages involved during Cyber Security Inspections (CSI), Command Cyber Readiness Inspections (CCRI) and Command Cyber Operational Readiness Inspections (CCORI); develop follow on reports by assessing inspection statistical data/metrics of post inspections adjudications status.
* Conduct analysis of trends in inspection findings/results.
* Potential Travel - CONUS 5-10%
Required:
* Active SECRET Clearance
* 5-7 years of experience in DoD/DoN Cybersecurity, RMF, or Information Assurance
* Experience using Navy RMF tools, including DADMS/DITPR-DON, VRAM, and eMASS to process and update A&A packages
* Knowledge of the National Institute of Standards and Technology (NIST) RMF Special Publications
* Ability to Provide technical support and apply expertise in assessing information system compliance with DoD and Navy RMF standards and review, verify, and validate required DoD RMF documentation and artifacts in accordance with DoD Instruction 8510.01, RMF for DoD IT, and the Navy RMF Process Guide (RPG)
* Ability to perform quality assurance reviews for required content in all packages in the A&A process in accordance with a client checklist
* Ability to conduct RMF checkpoint and collaboration activities
* Ability to perform RMF and FISMA data collection, analysis, reporting, and metrics generation
* Ability to use vulnerability assessment scanning tools and provide related reporting
* Proficient with Microsoft Office (Word, Excel, and PowerPoint)
* DoD 8570 IAM Level III Certification or the ability to obtain within 6 months
Preferred:
* BS Degree in Computer Science, Cyber Security, or related technical field in lieu of experience
* Familiarity with Afloat and Ashore Naval Networks
The Cyber Security Analyst will support the USFF N6 Directorate Fleet Enterprise Support Team, Package Submitting Office (PSO) in the end-to-end Risk Management Framework (RMF) Assessment & Authorization (A&A) process for Ashore and Afloat, providing overarching expertise for the A&A process. This effort will highlight and track significant physical, policy and or network security issues, improving network security and awareness on Naval networks world-wide.
* Review A&A package submissions to ensure system/network architectures and technical / non-technical operating features adequately protect and defend against unauthorized access, ensure systems availability, and meet DoD/Navy IA/CS implementation policy requirements and data protection safeguards.
* Conduct IA/CS compliance and A&A documentation validation assessments for Naval networks, legacy applications, and systems.
* Assist in the development or updates to existing, A&A and IA/CS documentation to ensure complete documentation in accordance with DoD A&A and IA/CS policy.
* Coordinate corrections for errors, information omissions, and shortfalls in A&A documentation packages.
* Communicate feedback and coordinate corrections with subordinate commands within five business days and validate prior to processing.
* Assist in the development procedures to support A&A workflow processes, criteria needed to facilitate processes and Navy Authorizing Official (NAO) accreditation decision milestones.
* Provide representation in meetings to include providing meeting minutes and supporting follow-up tasks.
* Assist in the development of point papers, naval messages, presentations, briefings, and other forms of written documentation on an as needed basis to support A&A and IA/CS functions.
* Assist in the development of Standard Operating Procedures (SOPs), checklists, workflow process charts, forms, POC lists, and other documentation needed to support NAO processes and related A&A and IA/CS functions and keep it up to date.
* Compile and analyze data for USFF leadership review for IA/CS readiness and compliance.
* Identify areas where commands should focus IA/CS efforts as result of or in support of inspections.
* Provide support for all stages involved during inspections issues to include inspection finding adjudication in Vulnerability Management System (VMS), assessing statistical data/metrics of post inspection adjudication status, and Security Technical Implementation Guide (STIG) review and interpretation.
* Track and report compliance for all stages involved during Cyber Security Inspections (CSI), Command Cyber Readiness Inspections (CCRI) and Command Cyber Operational Readiness Inspections (CCORI); develop follow on reports by assessing inspection statistical data/metrics of post inspections adjudications status.
* Conduct analysis of trends in inspection findings/results.
* Potential Travel - CONUS 5-10%
Required:
* Active SECRET Clearance
* 5-7 years of experience in DoD/DoN Cybersecurity, RMF, or Information Assurance
* Experience using Navy RMF tools, including DADMS/DITPR-DON, VRAM, and eMASS to process and update A&A packages
* Knowledge of the National Institute of Standards and Technology (NIST) RMF Special Publications
* Ability to Provide technical support and apply expertise in assessing information system compliance with DoD and Navy RMF standards and review, verify, and validate required DoD RMF documentation and artifacts in accordance with DoD Instruction 8510.01, RMF for DoD IT, and the Navy RMF Process Guide (RPG)
* Ability to perform quality assurance reviews for required content in all packages in the A&A process in accordance with a client checklist
* Ability to conduct RMF checkpoint and collaboration activities
* Ability to perform RMF and FISMA data collection, analysis, reporting, and metrics generation
* Ability to use vulnerability assessment scanning tools and provide related reporting
* Proficient with Microsoft Office (Word, Excel, and PowerPoint)
* DoD 8570 IAM Level III Certification or the ability to obtain within 6 months
Preferred:
* BS Degree in Computer Science, Cyber Security, or related technical field in lieu of experience
* Familiarity with Afloat and Ashore Naval Networks
group id: 10281381
