Posted today
Secret
Mid Level Career (5+ yrs experience)
$120,000 - $140,000
IT - Security
Radford, VA (Off-Site/Hybrid)
- Company: IBM
- Location: Radford, VA - can live within 4 hours of location and work hybrid 2-3 days onsite, at minimum 1 week per month, sometimes for 3 weeks per month or 2-3 days onsite. Travel expenses will be reimbursed.
- Clearance: Secret
- Duration: at least 1 year, expected to extend up to 5 years
Required Skills & Experience
This position is for a Cybersecurity Policy Administrator supporting the Army Edge Computing Capability (AECC) project that ALTESS is fielding for the US Army. The AECC solution is a containerized, Kubernetes-based, multitenant hosting environment for hosting Army enterprise and tactical applications. AECC is utilizing Kubernetes and potentially Red Hat OpenShift to implement a cloud-native, software-defined infrastructure across multiple global sites. ALTESS provides value-added common and managed services built on top of the Kubernetes foundation that hosted Army applications will require. ALTESS is a managed service provider (MSP) and hosting services provider for Army applications. ALTESS is a Product Lead office under Capability Program Executive (CPE) Enterprise Software and Services (CPE ES2).
Position Duties:
• Serve as overall subject matter expert on Cybersecurity Policy Administration.
• Work within Enterprise Mission Assurance Support Service (eMASS) to add and update documentation, import scan reports and STIG files, work with POA&Ms, and all other aspects of eMASS management.
• Work between technical and policy teams to implement, maintain, and monitor technical security configuration controls, including Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and other industry security hardening guidance.
• Work between technical and policy teams to successfully implement and manage requirements for maintaining the Authority to Operate (ATO) and security control inheritance capabilities.
• Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements.
• Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2.
• Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required.
• Update and/or assist the hosted system's personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository, i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
• Assist in the preparation of network infrastructure specifications or designs incorporating required information security features.
• Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies, and best industry practice.
• Interact with the Army Regional Cyber Center in theater performing CSSP duties, and customer ISSOs/ISSMs on a regular basis.
Required Skills:
• Mid-to-senior level Cybersecurity Policy Administrator experience.
• eMASS experience is required.
• Experience effectively managing multiple large-scale projects.
• Experience automating routine administrative tasks desired.
• Understanding of network, storage, server, and application technologies.
• Working knowledge of DoD STIGs, and the Information Assurance Vulnerability Management (IAVM) process.
Job Description
• Serve as overall subject matter expert on Cybersecurity Policy Administration.
• Work within Enterprise Mission Assurance Support Service (eMASS) to add and update documentation, import scan reports and STIG files, work with POA&Ms, and all other aspects of eMASS management.
• Work between technical and policy teams to implement, maintain, and monitor technical security configuration controls, including Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and other industry security hardening guidance.
• Work between technical and policy teams to successfully implement and manage requirements for maintaining the Authority to Operate (ATO) and security control inheritance capabilities.
• Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements.
• Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2.
• Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required.
• Update and/or assist the hosted system's personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository, i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
• Assist in the preparation of network infrastructure specifications or designs incorporating required information security features.
• Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies, and best industry practice.
• Interact with the Army Regional Cyber Center in theater performing CSSP duties, and customer ISSOs/ISSMs on a regular basis.
Required Skills:
• Mid-to-senior level Cybersecurity Policy Administrator experience.
• eMASS experience is required.
• Experience effectively managing multiple large-scale projects.
• Experience automating routine administrative tasks desired.
• Understanding of network, storage, server, and application technologies.
• Working knowledge of DoD STIGs, and the Information Assurance Vulnerability Management (IAVM) process.
- Location: Radford, VA - can live within 4 hours of location and work hybrid 2-3 days onsite, at minimum 1 week per month, sometimes for 3 weeks per month or 2-3 days onsite. Travel expenses will be reimbursed.
- Clearance: Secret
- Duration: at least 1 year, expected to extend up to 5 years
Required Skills & Experience
This position is for a Cybersecurity Policy Administrator supporting the Army Edge Computing Capability (AECC) project that ALTESS is fielding for the US Army. The AECC solution is a containerized, Kubernetes-based, multitenant hosting environment for hosting Army enterprise and tactical applications. AECC is utilizing Kubernetes and potentially Red Hat OpenShift to implement a cloud-native, software-defined infrastructure across multiple global sites. ALTESS provides value-added common and managed services built on top of the Kubernetes foundation that hosted Army applications will require. ALTESS is a managed service provider (MSP) and hosting services provider for Army applications. ALTESS is a Product Lead office under Capability Program Executive (CPE) Enterprise Software and Services (CPE ES2).
Position Duties:
• Serve as overall subject matter expert on Cybersecurity Policy Administration.
• Work within Enterprise Mission Assurance Support Service (eMASS) to add and update documentation, import scan reports and STIG files, work with POA&Ms, and all other aspects of eMASS management.
• Work between technical and policy teams to implement, maintain, and monitor technical security configuration controls, including Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and other industry security hardening guidance.
• Work between technical and policy teams to successfully implement and manage requirements for maintaining the Authority to Operate (ATO) and security control inheritance capabilities.
• Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements.
• Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2.
• Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required.
• Update and/or assist the hosted system's personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository, i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
• Assist in the preparation of network infrastructure specifications or designs incorporating required information security features.
• Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies, and best industry practice.
• Interact with the Army Regional Cyber Center in theater performing CSSP duties, and customer ISSOs/ISSMs on a regular basis.
Required Skills:
• Mid-to-senior level Cybersecurity Policy Administrator experience.
• eMASS experience is required.
• Experience effectively managing multiple large-scale projects.
• Experience automating routine administrative tasks desired.
• Understanding of network, storage, server, and application technologies.
• Working knowledge of DoD STIGs, and the Information Assurance Vulnerability Management (IAVM) process.
Job Description
• Serve as overall subject matter expert on Cybersecurity Policy Administration.
• Work within Enterprise Mission Assurance Support Service (eMASS) to add and update documentation, import scan reports and STIG files, work with POA&Ms, and all other aspects of eMASS management.
• Work between technical and policy teams to implement, maintain, and monitor technical security configuration controls, including Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and other industry security hardening guidance.
• Work between technical and policy teams to successfully implement and manage requirements for maintaining the Authority to Operate (ATO) and security control inheritance capabilities.
• Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements.
• Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2.
• Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required.
• Update and/or assist the hosted system's personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository, i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
• Assist in the preparation of network infrastructure specifications or designs incorporating required information security features.
• Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies, and best industry practice.
• Interact with the Army Regional Cyber Center in theater performing CSSP duties, and customer ISSOs/ISSMs on a regular basis.
Required Skills:
• Mid-to-senior level Cybersecurity Policy Administrator experience.
• eMASS experience is required.
• Experience effectively managing multiple large-scale projects.
• Experience automating routine administrative tasks desired.
• Understanding of network, storage, server, and application technologies.
• Working knowledge of DoD STIGs, and the Information Assurance Vulnerability Management (IAVM) process.
group id: 10112344
Defining Company Culture
