isecjobs.com

DoD Authorization to Operate (ATO) Specialists

Alexandria, VA, United States

Full Time Clearance required USD 135K - 216K
Company logo

Peraton

Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly...

View all jobs at Peraton

Apply now Apply later

Responsibilities

Peraton is  seeking highly skilled and detail-oriented DoD Authorization to Operate (ATO) Specialist(s) to join our team. The ideal candidate will have extensive experience in the ATO process, accreditation, and cybersecurity compliance within the Department of Defense (DoD) environment. This role will support the development and maintenance of security authorization packages, manage compliance artifacts, and ensure adherence to DoD policies and standards.

 

The position requires on-site work in Alexandria, VA, or Kearneysville, WV.  Must be able to work in a secure, classified environment and adhere to DoD security protocols.

 

Key Responsibilities:

  • ATO Process Management:
    • Lead and support the end-to-end ATO process for DoD systems, ensuring compliance with RMF (Risk Management Framework) and DoD policies.
    • Prepare, review, and maintain ATO packages, including supporting artifacts such as System Security Plans (SSPs), Security Assessment Reports (SARs), and Risk Assessments.
  • Artifact Creation and Maintenance:
    • Develop and maintain supporting documentation, including boundary diagrams, data flow diagrams, and hardware/software inventories.
    • Ensure all artifacts align with DoD standards and meet audit requirements.
    •  
  • STIG Compliance and Reporting:
    • Conduct Security Technical Implementation Guide (STIG) assessments using tools like SCAP and STIG Viewer.
    • Generate and review STIG compliance reports, identifying vulnerabilities and recommending remediation actions. 
  • POA&M Creation and Management:
    • Develop and manage Plans of Action and Milestones (POA&Ms) to address security control deficiencies.
    • Track and report on POA&M progress, ensuring timely remediation and compliance.
  • eMASS Administration:
    • Manage system records and workflows in the Enterprise Mission Assurance Support Service (eMASS).
    • Upload and maintain artifacts, track control compliance, and support authorization workflows in eMASS.
  • Accreditation Process and Policy:
    • Ensure systems meet DoD accreditation requirements and maintain continuous monitoring post-ATO.
    • Stay up-to-date on DoD cybersecurity policies, directives, and frameworks (e.g., NIST 800-53, DoDI 8500.01).
  • Collaboration and Communication:
    • Work closely with system owners, ISSOs, and other stakeholders to ensure compliance and address security concerns.
    • Provide guidance on security best practices and assist with audit preparation.

Qualifications

Basic Qualifications:

 

  • Bachelor’s degree and minimum 12 years’ experience and Master’s degree with minimum 10 years’ experience and high school diploma/equivalent and 16 years’ experience
  • Minimum of 8 or more years of experience in DoD cybersecurity, with a focus on the ATO process and RMF.
  • Demonstrated experience in a large multi domain environment creating and managing ATO artifacts, boundary diagrams, and accreditation documentation.
  • Hands-on experience with STIG compliance, POA&M management, and eMASS administration.
  • Certifications: CompTIA Security+ (mandatory)
  • U.S. Citizenship required; must have Active DoD Secret clearance or higher

Preferred Qualifications:

 

  • Experience with DoD cloud environments (e.g., Impact Level 4/5 systems).
  • Familiarity with additional compliance tools (e.g., Nessus, ACAS).
  • Prior experience working with DoD agencies or contractors.
  • Certifications: CISSP, CASP+, CISM, or other advanced cybersecurity certifications
  • Proficient in STIG compliance tools (e.g., SCAP, STIG Viewer).
  • Strong understanding of RMF, NIST 800-53, and DoD cybersecurity policies.
  • Experience with eMASS workflows and administration.
  • Ability to create detailed boundary diagrams and data flow documentation
  • Strong attention to detail and organizational skills.
  • Excellent written and verbal communication skills.
  • Ability to work independently and collaboratively in a fast-paced environment.

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Target Salary Range

$135,000 - $216,000. This represents the typical salary range for this position based on experience and other factors.

EEO

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.
Apply now Apply later
Job stats:  0  0  0

Tags: ACAS CASP+ CISM CISSP Clearance Cloud Compliance CompTIA DoD eMASS Monitoring Nessus NIST NIST 800-53 POA&M Risk assessment Risk management RMF SCAP Security assessment Security Assessment Report System Security Plan Vulnerabilities

Region: North America
Country: United States

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Security Officer jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cybersecurity Engineer jobsSenior Cloud Security Engineer jobsSystems Engineer jobsSenior Information Security Analyst jobsInformation Security Manager jobsSystems Administrator jobsSenior Network Security Engineer jobsIT Security Engineer jobsChief Information Security Officer jobsCyber Security Specialist jobsIT Security Analyst jobsSecurity Consultant jobsSecurity Specialist jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsThreat Intelligence Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobs
GDPR jobsSaaS jobsEncryption jobsBash jobsSplunk jobsSQL jobsTop Secret jobsEDR jobsThreat detection jobsMalware jobsFinance jobsRMF jobsIDS jobsSDLC jobsForensics jobsIPS jobsTerraform jobsDocker jobsITIL jobsIntrusion detection jobsCompTIA jobsActive Directory jobsSOC 2 jobsOWASP jobsDoDD 8570 jobs
SAP jobsCRISC jobsGIAC jobsUNIX jobsAnsible jobsSANS jobsHIPAA jobsVPN jobsJira jobsCCSP jobsOSCP jobsTCP/IP jobsIT infrastructure jobsSOAR jobsJavaScript jobsBanking jobsClearance Required jobsSOX jobsMITRE ATT&CK jobsMachine Learning jobsData Analytics jobsIndustrial jobsVMware jobsDNS jobsNIST 800-53 jobs