Cybersecurity \u0026 ATO Specialist

Koniag IT System, LLC, a Koniag Government Services company, is seeking a Cybersecurity & ATO Specialist with a TS/SCI security clearance to support KITS and our government customer at Langley Air Force Base, Hampton, VA.

We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

The Cybersecurity Specialist will be responsible for the implementation of AI/RPA Platforms, systems, and data for the Air Combat Command (ACC) - Accelerated AI Support (AAIS) program, providing technical leadership, security management expertise, and Authority to Operate (ATO) process oversight. This role requires deep expertise in DoD cybersecurity frameworks, risk management, and the secure integration of AI/RPA technologies across both classified and unclassified environments while ensuring compliance with federal cybersecurity regulations and DoD standards.

Essential Job Functions:

AI/RPA Platform Implementation & Security Management

• Support technical implementation of AI/RPA platform phases across ACC enterprise
• Manage security aspects of AI/RPA platform deployment and integration
• Recommend system architecture alternatives considering security, functionality, and cost
• Provide technical guidance on network architecture, data flows, and security controls for AI/RPA systems
• Ensure secure integration of AI/RPA tools across classified and unclassified environments

Authority to Operate (ATO) & Compliance Leadership/Management

• Lead and manage Authority to Operate (ATO) approval processes for DoD platforms, systems, and data management repositories
• Manage FISMA reporting processes and data collection for AI/RPA systems
• Develop and submit quarterly and annual CIO FISMA metrics
• Ensure compliance with FedRAMP requirements and DoD cybersecurity policies
• Conduct system security assessments and maintain comprehensive documentation
• Lead and manage Authority to Operate (ATO) approval processes for DoD platforms, systems, and data management repositories
• Develop, review, and maintain security documentation packages including System Security Plans (SSPs), Risk Assessment Reports (RARs), and Plans of Action & Milestones (POA&Ms)
• Conduct security control assessments and vulnerability analyses in accordance with NIST 800-53 and DoD 8510.01 standards
• Coordinate with Authorizing Officials (AOs) and stakeholders throughout the ATO lifecycle

ISSO/ISSM Functions & Risk Management:

• Serve in Information System Security Officer (ISSO) and Information System Security Manager (ISSM) capacities
• Monitor continuous compliance with DoD and Air Force cybersecurity policies, including DoD 8570.01-M and AFI 17-130
• Implement and maintain security controls for information systems and networks
• Conduct periodic security assessments and maintain security posture documentation
• Conduct comprehensive risk assessments and develop mitigation strategies for AI/RPA implementations

AI/RPA Security Integration:

• Provide cybersecurity expertise for the secure integration of Artificial Intelligence (AI) and Robotic Process Automation (RPA) tools
• Assess security risks and develop mitigation strategies for AI/RPA implementations across classified and unclassified environments
• Ensure AI/RPA systems comply with DoD AI ethics principles and data protection requirements
• Collaborate with development teams to implement security-by-design principles

Risk Management & Advisory:

• Conduct comprehensive risk assessments and develop risk mitigation strategies
• Advise leadership on cybersecurity posture and emerging threats related to AI/RPA technologies
• Support incident response activities and security event analysis
• Maintain situational awareness of evolving cyber threats and regulatory changes

Documentation & Reporting:

• Create and maintain executive-level documentation, metrics, and dashboards
• Generate comprehensive documentation including System Security Plans (SSPs), Risk Assessment Reports (RARs), and Plans of Action & Milestones (POA&Ms)
• Develop and review security documentation mapping technical requirements to security controls
• Interface with key stakeholders across organizational levels
• Maintain reporting accuracy and consistency across ACC reporting platforms

Working Conditions:

Location and Environment:

Primary Work Location:

• Joint Base Langley-Eustis (JBLE), Virginia

Classified Facilities:

• Regular work in Sensitive Compartmented Information Facilities (SCIFs) and secure spaces

Workspace:

• Government-provided office space in secure facility; access to NIPRNet, SIPRNet, and collaboration tools

Classified Work:

• Regular access to classified environments (SIPRNet, AFSCI) required for coordination and stakeholder engagement

Travel & Schedule Expectations:

• No travel expected at this time. Subject to change.

Physical Demands:

• Prolonged periods of sitting and working at a computer workstation
• Visual acuity for detailed technical work and data analysis
• Manual dexterity for typing, coding, and operating computer equipment

Schedule and Availability:

• Core Hours: 0800-1700 EST, Monday-Friday), with occasional extended hours to meet mission deadlines or support operational events
• Flexibility: Occasional early morning or evening meetings to accommodate wing schedules across time zones
• Surge Periods: Increased hours during major milestones, events, or exercises (with advance notice)
• On-Call: Not required, but responsiveness to urgent issues expected (email/phone within 4 hours during duty hours)
• Telework: No telework eligibility for unclassified administrative tasks; all classified work must be performed on-site in approved facilities

Security Environment:

• Work with classified information up to Top Secret/SCI level
• Compliance with OPSEC, CUI handling, and classification protocols
• Subject to security inspections, audits, and continuous evaluation
• Adherence to base access, badge, and facility security requirements

Minimum Qualifications, Certifications, and Platform Credentials:

Required Qualifications:

Security Clearance:

• Minimum TS/SCI clearance at project start - required

• Active TS/SCI clearance that is current and in-scope or classified environment assignment:

• Must be eligible for AFSCI access

Experience

• Minimum 5-7 years of hands-on experience with DoD ATO processes and security compliance

• Proven experience as ISSO/ISSM supporting DoD systems and platforms

• Direct experience with DoD cybersecurity frameworks (RMF, NIST 800-53, DISA STIGs)

• Experience with AI/ML or RPA security assessments and implementations preferred

• Knowledge of classified and unclassified network security requirements Required Skills and

Competencies

Air Force or DoD operational workflows (intelligence, mission planning, logistics, or similar mission sets)

Certifications (Required):

One or more of the following certifications:

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• Security+ CE (DoD 8570 IAT Level II minimum)
• GCIH, GSEC, or equivalent advanced security certification

Technical Competencies

• Proficiency with security assessment tools (ACAS/Nessus, SCAP, etc.)

• Experience with DoD data management repositories and cloud platforms

• Understanding of network security architectures and zero-trust principles

• Familiarity with DevSecOps practices and security automation tools

• Knowledge of Air Force and ACC-specific cybersecurity policies

Preferred Qualifications:

• Experience supporting Air Force ISR Wings, intelligence squadrons, or combat operations centers

• Background in intelligence analysis, mission planning, or operational workflows that AI/RPA can enhance

• Previous work with Advana, AskSage, or other DoD AI platforms

• Experience conducting workflow discovery and requirements elicitation in operational military environments

• Understanding of DoD data governance, accreditation processes, and security compliance for AI/RPA deployments

Our Equal Employment Opportunity Policy

The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment.

The company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations.

Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com.

Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352