Today
Top Secret
Unspecified
Unspecified
IT - Security
Norfolk, VA (On-Site/Office)
ManTech seeks a motivated, career and customer-oriented Risk Management Framework (RMF) Specialist to join our team in Norfolk, VA. This position is onsite.
Responsibilities include but are not limited to:
Minimum Qualifications:
Preferred Qualifications:
Clearance Requirements:
Physical Requirements:
Responsibilities include but are not limited to:
- Lead the creation and maintenance of cybersecurity operations-related Policies and Procedures, Administrative Guides, Plans, and Technical Documentation
- Offer security guidance throughout system lifecycles in collaboration with engineers, administrators, and software developers
- Prepare impact and risk assessment reports on residual risks, including identifying false positives and nonapplicable findings, for use by NCTE's cybersecurity and risk management leadership. This includes security compliance reports, STIG reports, compliance status briefings, and security/risk test artifacts
- Support cybersecurity and risk management workflow actions and change request tickets within NCTE's change management system, including reviewing, approving, or addressing risk management aspects of change requests
- Provide technical guidance to engineers, software developers, and system administrators to support vulnerability remediation, STIG compliance, patching, and code security measures required to achieve compliance
- Review and update IS Authorization documentation (Body of Evidence) to support IS Assessment and Authorization (Certification/Accreditation) activities
- Must be able to work in a constantly changing regulatory environment with short, mid, and long-term timelines for remediating any non-compliance
Minimum Qualifications:
- BS degree with 8+ years' experience or 12+ years of IA experience in lieu of degree
- Current DoD 8570 baseline certification for IAM III
- Expert in Risk Management Framework (RMF), NIST, ICD, and CNSS standards.
- Expert with network technologies (LAN & WAN) and best practices within a classified environment to include crypto and key management
- STIG compliance, SCC and STIG Viewer experience, and ACAS expertise.
- Expert with Microsoft Windows, Linux, and system virtualization in a secure network environment.
Preferred Qualifications:
- Past or current ISSM/ISSO experience
- Security+ or CISSP
- GCIH a plus
- DoD IS knowledge and experience
- Background or understanding of System Security Plans (SSP)
- Security hardening scripting/automation experience
- Microsoft OS Certification (MCSE Win 7 or other)
- Linux certification (RHCSA, CompTIA Linux, LCFS/LCFE, etc.)
- TS-SCI Eligible
Clearance Requirements:
- Active Secret required to start
Physical Requirements:
- Up to 25% travel required or as needed.
- Must be able to remain in a stationary position 50%
- Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer.
- The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc.
group id: RTX14564a
ManTech Corporate Capabilities
