Information Security Analyst

Mount Indie is seeking a highly skilled and experienced Cyber Accreditation Specialist with 5+ years of experience for Department of Defense (DoD) programs at the Naval Base Point Mugu located near Camarillo, CA. The Cyber Accreditation Specialist will be responsible for the development, coordination, and maintenance of cyber accreditation packages, primarily focusing on Risk Management Framework (RMF) artifacts, inheritance mapping, and Plan of Action & Milestones (POA&M) management supporting the Navy's Authority To Operate initiatives. This role ensures compliance with relevant DoD and federal cybersecurity guidelines and contributes to our organization's mission support objectives by securing critical Navy information systems.

Responsibilities

• Cyber Accreditation Package Development: Develop and maintain RMF artifacts, including System Security Plans (SSP), generate & control implementation evidence, inheritance maps, and POA&Ms
• Coordination and Compliance: Coordinate with Authorizing Officials (AO) and Information System Security Managers (ISSM) to define an Authority to Operate (ATO) plan, develop an interim risk acceptance strategy, and manage control inheritance from enterprise services and range systems
• Reference Compliance: Ensure that all activities and documentation are compliant with the latest DoD and federal cybersecurity standards, such as:
• DoDI 8510.01 Risk Management Framework (RMF)
• NIST SP 800-53 Rev. 5
• NIST SP 800-171 (CUI)
• DoD Zero Trust Reference Architecture
• DoD Cloud Security Requirements Guide (SRG) / FedRAMP baselines (aligned to IL5 unless otherwise directed)

Qualifications

• 5+ years of experience in cybersecurity, specifically in the development and coordination of cyber accreditation packages
• BS or BA degree in Cybersecurity, Information Technology, or a related field. An additional 6 years of relevant work experience may be substituted for a bachelor's degree, or 4 additional years of work experience with a relevant associate degree.
• Active Secret Clearance
• Demonstrated experience with RMF, SSP development, and POA&M management
• Familiarity with DoD and federal cybersecurity guidelines, including DoDI 8510.01, NIST SP 800-53 Rev. 5, NIST SP 800-171, DoD Zero Trust Reference Architecture, and DoD Cloud SRG/FedRAMP baselines
• Strong analytical and problem-solving skills
• Ability to effectively coordinate and communicate with various stakeholders, including AO, ISSM, and other cybersecurity professionals
• Current Security+ Certificate
• IAM Level 2 as per DoD Directive 8570.01; and experience working with the DIACAP/Risk Management Framework processes
• Excellent communication and interpersonal skills-verbal, non-verbal, written, and listening-for staff, customer and organizational level communications, both formal and informal
• Ability to work independently, self-starter
• Working knowledge and use of Microsoft Office suite programs, MS Word, Excel, Access, and PowerPoint

Preferred Qualifications:

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent certification
• Experience with cloud security and FedRAMP compliance