Cybersecurity Specialist

Sentar is proud to be an employee-owned company, fostering a culture of empowerment, collaboration, and innovation. Sentar is dedicated to developing the critical talent that the connected world demands to create solutions to address the convergence of cybersecurity, intelligence, analytics, and systems engineering. We invite you to join the team where you can build, innovate, and secure your career.

Role Description:

This position is the Cybersecurity Specialist for the Joint Operational Medicine Information Systems (JOMIS), part of the Program Executive Office, Defense Healthcare Management Systems (PEO DHMS) supported by the Defense Health Agency (DHA) for personnel and logistics functions. The Cybersecurity Specialist will serve as the RMF counselor support to vendor and assigned Information Systems Security Managers (ISSM) in efforts to develop RMF packages and provide relevant cyber security expertise. Individuals will modernize, deploy, and sustain the Department of Defense’s (DoD) operational medicine information systems by fielding the DoD Modernized Electronic Health Record EHR solution while developing and fielding new theater capabilities to enable comprehensive health services to deployed forces across the range of military operations.

Duties:

• Develop, update, and/or review DoD RMF documentation to include Security Plans, Implementation Plans, Plans of Action and Milestones (POA&Ms) and Risk Assessment Reports
• Assess system compliance against NIST, DoD, and DHA security requirements to include NIST SP 800-53 controls and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
• Produce evidence as necessary to support compliance status of NIST, DoD, and DHA security requirements
• Coordinate among stakeholders (system administrators, engineers, ISSMs, certification authorities and representatives, Authorizing Officials (AOs) and representatives, program managers, etc.) to create or update system/site policies, procedures and process guides in order to properly identify, document, mitigate and manage risks attributed to target system, network, and/or application
• Coordinate with system SMEs and vendors to identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories, and other artifacts required by DoD RMF
• Ability to use applicable compliance and authorization reporting environments (e.g., eMASS, CMRS, CSTAR) to document the progress of the RMF effort.
• Lead or attend meetings with stakeholders to discuss status of efforts
• Provide cyber security reports to leadership, conduct scans, and participate in the process to obtain and maintain ATO status for systems identified by DHA, Military Treatment Facility (MTF), and/or Program Management Office (PMO) leadership, as applicable
• Ensure compliance with protection requirements, control procedures, incident management reporting, remote access requirements, and system management for all systems under scope.
• Experience with system administration of ACAS tools
• Experience with system administration of cloud-based systems in AWS or Azure
• Analyze vulnerability scans of information systems using agency assessment tools (e.g., ACAS/Nessus)
• Submit weekly reports to leadership regarding system/program status
• Work onsite as needed (SIRP access)

Travel to sites/HQ as needed (<25%)

Qualifications:

Clearance: Secret

Certifications: IAT II

• 10+ years of technical experience or a Bachelor's Degree and 6+ years of technical experience.
• DoD 8570 compliance to IAT Level II Certification (e.g. CCNA Security, Security+ CE, CISSP, etc.)
• Demonstrated experience with Risk Management Framework with DoD (DHA experience a plus)
• Demonstrated efficiency and experience in RMF package development, including POA&Ms (mitigation statements), Security Plans, Risk Assessments, system/site policies, procedures and processes, architecture diagrams, and hardware/software inventories
• Experience in assessing systems using NIST SP 800-53, DISA STIGS and SRGs
• Experience with system administration of RHEL 7/8 and Windows servers to include installation and management of ACAS/Nessus tools
• Demonstrated strong experience with eMASS
• Strong familiarity with DoD Cloud environment and requirements (AWS & Azure)
• Familiarity with Agile and DevSecOps
• Work onsite as needed (SIPR access)
• Ability to travel ~25%

Desired skills

• Experience creating Cyber Policy for NIST RMF packages
• Experience with system administration of ACAS tools

Benefits at Sentar:

Our unique ownership model attracts top talent, giving employees the freedom to take initiative and drive meaningful improvements. In addition to cultivating a thriving and inclusive work environment, Sentar offers an extensive benefits package designed to support the well-being of employees and their families. Employee ownership is the foundation of our culture, promoting participation, teamwork, and accountability while ensuring long-term financial security and a commitment to excellence.

• Voluntary Medical, Dental, Vision, with Health Savings or Flexible Spending Plan options
• Voluntary Life, Critical Illness, Accident, and Long Term Care insurance options
• Group Term Life, Short-Term and Long-Term Disability is provided by Sentar to all qualifying employees
• Generous 401(k) match
• Competitive PTO plan that graduates quickly with years of service
• Other leave programs; holiday schedule along with bereavement, maternity, jury and military duty
• Mental health awareness programs
• Tuition reimbursement
• Professional development reimbursement
• Recognition and Awards programs

If you are not ready to apply for this position, submit your resume here to join our talent community . We'll keep you updated occasionally on new job opportunities.

Sentar is an Affirmative Action and Equal Opportunity Employer M/F/Vets/Persons with Disabilities

Our culture is one of inclusivity and support. Sentar is proudly an Equal Opportunity and VEVRAA Federal Contractor Employer M/F/Vets/Persons with Disabilities. Follow these links to learn more about your rights: EEO Is the Law Poster ; EEO Is Law Supplement ; and Pay Transparency .

We want you to build your career at Sentar, so if you are an individual with a disability and require a reasonable workplace accommodation applying for a job or at any point in the employment process, contact the Recruiting Manager at recruiting@sentar.com . Please indicate the specifics of the assistance needed. Thank you for considering Sentar in your employment search.

Build, Innovate, Secure Your Career at Sentar.