Accreditation and Authority to Operate (ATO) Specialist

Background Information:Innovative Defense Technologies (IDT), provider of cutting-edge cloud-based integration, automated testing and data analysis for complex, mission-critical systems in the US Department of Defense (DOD), is seeking an Accreditation and Authority to Operate (ATO) Specialist to be based in our Arlington, VA office. Leveraging advanced software automation, model-based systems engineering (MBSE), and AI-driven capabilities, IDT accelerates capability development, enhances operational readiness, and reduces lifecycle costs for the Department of Defense. The company is dedicated to transforming defense systems through innovation, efficiency, and mission-critical results. Overview: IDT’s Warfare Systems Business Area (BA) is responsible for building and enabling the Navy’s next generation of tactical warfare and weapons systems.  As the nation enters a new era of warfare, the Warfare Systems group will be responsible for enabling and accelerating the tactical capability that is delivered to the warfighter.   The Accreditation Specialist will work side-by-side with system engineers to plan, document, and execute all aspects of the software certification and accreditation (C&A) process. This includes supporting development of artifacts required for Mission Risk Assessments (MRAs), Security Authorization Packages, and documentation aligned with DoD and Navy RMF guidelines. The ideal candidate will bring deep experience navigating the Navy's cyber accreditation landscape and have a demonstrated track record of securing ATOs for systems deployed aboard surface ships. This is a strategic, cross-functional role requiring both technical knowledge and policy fluency. All applicants must currently possess an active U.S. Security Clearance. Responsibilities Include:  

• Serve as the accreditation subject matter expert supporting software engineering and system design teams 
• Develop and maintain RMF packages, including SSPs, SARs, POA&Ms, and supporting artifacts
• Guide the development team on technical decisions impacting cybersecurity posture and compliance
• Coordinate with Navy certifying authorities and Designated Accrediting Authorities (DAAs) for system review and approval
• Lead or support Mission Risk Assessments (MRAs) and related cybersecurity assessments
• Translate system security requirements into actionable engineering activities
• Track and manage timelines, deliverables, and compliance milestones for certification and accreditation
• Support the integration of cybersecurity controls into DevSecOps pipelines where applicable

Minimum Required Qualifications:

• Active DoD Secret clearance (minimum); TS/SCI preferred
• 15+ years of experience supporting cybersecurity accreditation efforts for DoD or Navy systems
• Deep understanding of the Risk Management Framework (RMF) and Navy cybersecurity compliance processes
• Proven success achieving ATOs for software systems operating on Navy ships or in afloat environments
• Experience working with eMASS, ACAS, STIGs, and vulnerability scanning tools
• Strong collaboration skills and ability to interface with government cybersecurity organizations
• Bachelor’s degree in Computer Science, Cybersecurity, Systems Engineering, or related field

Required Skills:

• Experience supporting NAVSEA, PEO IWS, or other surface warfare acquisition organizations
• Familiarity with DoD DevSecOps initiatives and secure software development practices
• Prior military experience or time embedded with Navy cyber or accreditation organizations
• Certified Information Systems Security Professional (CISSP) or equivalent
• Familiarity with Risk Management Framework (RMF), Authority to Operate (ATO) operations and experience developing solutions that adhere to cyber policy 

Preferred Skills:

• Familiarity with foundational networking concepts such as routing, switching, identity services, intrusion detection, and firewall
• Familiarity with virtual machines in VMWare vSphere environments including networking configuration
• Familiarity with complex software development environments including submodules, remote dependencies, and mixed-code deployments 

Competencies: 

• Exceptional knowledge of cybersecurity policy, practices, and compliance standards
• Detail-oriented and highly organized project execution skills
• Clear and confident communication with stakeholders at all levels
• Ability to translate complex policy into actionable engineering guidance
• Proactive, team-oriented problem solver with a strong mission focus 

EEO Statement:IDT is an Equal Opportunity employer.