Accreditation and Authority to Operate (ATO) Specialist
Arlington, Virginia, United States
Full Time Mid-level / Intermediate Clearance required USD 52K - 123K * est.
Innovative Defense Technologies (IDT)
Innovative Defense Technologies (IDT) develops state-of-the-art automated solutions, enabling the rapid delivery of warfare capabilities for the DOD.- Serve as the accreditation subject matter expert supporting software engineering and system design teams
- Develop and maintain RMF packages, including SSPs, SARs, POA&Ms, and supporting artifacts
- Guide the development team on technical decisions impacting cybersecurity posture and compliance
- Coordinate with Navy certifying authorities and Designated Accrediting Authorities (DAAs) for system review and approval
- Lead or support Mission Risk Assessments (MRAs) and related cybersecurity assessments
- Translate system security requirements into actionable engineering activities
- Track and manage timelines, deliverables, and compliance milestones for certification and accreditation
- Support the integration of cybersecurity controls into DevSecOps pipelines where applicable
- Active DoD Secret clearance (minimum); TS/SCI preferred
- 15+ years of experience supporting cybersecurity accreditation efforts for DoD or Navy systems
- Deep understanding of the Risk Management Framework (RMF) and Navy cybersecurity compliance processes
- Proven success achieving ATOs for software systems operating on Navy ships or in afloat environments
- Experience working with eMASS, ACAS, STIGs, and vulnerability scanning tools
- Strong collaboration skills and ability to interface with government cybersecurity organizations
- Bachelor’s degree in Computer Science, Cybersecurity, Systems Engineering, or related field
- Experience supporting NAVSEA, PEO IWS, or other surface warfare acquisition organizations
- Familiarity with DoD DevSecOps initiatives and secure software development practices
- Prior military experience or time embedded with Navy cyber or accreditation organizations
- Certified Information Systems Security Professional (CISSP) or equivalent
- Familiarity with Risk Management Framework (RMF), Authority to Operate (ATO) operations and experience developing solutions that adhere to cyber policy
- Familiarity with foundational networking concepts such as routing, switching, identity services, intrusion detection, and firewall
- Familiarity with virtual machines in VMWare vSphere environments including networking configuration
- Familiarity with complex software development environments including submodules, remote dependencies, and mixed-code deployments
- Exceptional knowledge of cybersecurity policy, practices, and compliance standards
- Detail-oriented and highly organized project execution skills
- Clear and confident communication with stakeholders at all levels
- Ability to translate complex policy into actionable engineering guidance
- Proactive, team-oriented problem solver with a strong mission focus
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS Automation C CISSP Clearance Cloud Compliance Computer Science DevSecOps DoD eMASS Firewalls Intrusion detection Risk assessment Risk management RMF Security Assessment Report Security Clearance STIGs System Security Plan TS/SCI VMware
Perks/benefits: Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.