Security Specialist Senior - Secret Clearance Required

Suffolk, VA

Full Time Senior-level / Expert Clearance required USD 102K - 189K * ^est.

cFocus Software Incorporated

Our exclusive ATO as a Service™ software & expert services automate FISMA RMF & FedRAMP compliance.

View all jobs at cFocus Software Incorporated

Apply now Apply later

Posted 8 hours ago

cFocus Software seeks a Security Specialist Senior to join our program supporting the US Navy. This position is onsite in Suffolk, VA. This position requires a Secret clearance.

Qualifications:

Active Secret clearance
10+ years of experience developing and implementing system cybersecurity solutions.
Experience with the Risk Management Framework (RMF), identifying and tailoring security control baselines with applicable overlays, developing and maintaining the Security Plan for RMF, leading security control implementation and testing, performing vulnerability risk assessments in accordance with RMF Process Guide, assisting with security testing as required for Authorization and Accreditation (A&A) or annual security reviews, assisting in mitigating and closing open vulnerabilities, and recording security control compliance for systems.
Experience managing system cybersecurity controls, status, and artifacts in eMASS application.
Experience in developing and managing configuration management (change configuration/release management) processes.
Experience with Atlassian Jira or similar issue and project tracking software.
Experience with Atlassian Confluence or similar knowledge management software.
Active cloud certification
Active DoD IAT II/III certification

Duties:

Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information.
Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies.
May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.
May respond to computer security breaches, spillages, and viruses.
Responsible for maintaining cyber hygiene of the systems in accordance with DOD and DON policy and the program continuous monitoring strategy.
Ensure the system remains in compliance with the system Authorization Decision Document (ADD) and no changes that could affect the ADD are made to the system without proper authorization from the NAO.
Responsible for ensuring all cybersecurity documentation is maintained and updated per DOD and DON policy.
Maintain application and system configuration management in required DON and DOD reporting tools and applications.
Perform system audits to ensure alignment with ADD and approved baselines.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats: 0 0 0

Tags: Audits Clearance Clearance Required Cloud Compliance Confluence DoD eMASS Jira Monitoring Risk assessment Risk management RMF Strategy Vulnerabilities