Job Requirements
Hickam AFB, HI
Secret Polygraph not specified
Mid Level Career (5+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Leads all information assurance efforts to obtain and maintain the Authority to Operate (ATO) for a mission-critical system supporting the USAF PACAF GeoBase program. The primary focus of this role is overseeing the system's security posture and managing the RMF lifecycle. Responsibilities include RMF control implementation, system hardening, vulnerability tracking, and leading ATO documentation efforts. The ideal candidate will have a strong background in DoD cybersecurity, with secondary familiarity in system/database administration.
Responsibilities Include:
• Lead the implementation, documentation, and continuous monitoring of Risk Management Framework (RMF) controls.
• Serve as the primary point of contact for all matters related to the system’s certification and accreditation (C&A) and ATO.
• Maintain and update all system security artifacts in eMASS, and create and manage Plans of Action & Milestones (POA&M).
• Apply and maintain DISA STIGs across the architecture, including Windows Server, Oracle databases, and IIS web servers.
• Perform and document ACAS and SCAP scan reviews and coordinate all vulnerability remediation efforts.
• Oversee enterprise-level system hardening, patching, and the management of configuration baselines (GPOs, local security policy).
• Ensure the secure configuration of server hardware and software within a distributed IT architecture.
• Secure applications and information using Public Key Infrastructure (PKI).
• Troubleshoot network, database, and application connectivity issues that impact performance or security.
• Draft and maintain critical security documentation, including System Security Plans (SSPs), Standard Operating Procedures (SOPs), and change requests for the Configuration Control Board (CCB).
• Ensure systems remain compliant with all DoD patching and IAVM directives.
• Performs other job-related duties as assigned.
Experience, Education, Skills, Abilities requested:
• Bachelor’s degree in a relevant technical field.
• CompTIA Security+ certification (or other DoD 8570 IAT Level II or higher certification) is required.
• Demonstrated experience with DoD Information Assurance policies and the full life cycle of the certification and accreditation (C&A) process and Authorization to Operate (ATO).
• Hands-on experience with the Risk Management Framework (RMF) and creating/managing artifacts in eMASS.
• Proven experience in a DoD environment troubleshooting desktop, web, database, or server problems.
• Strong understanding of DISA STIGs and vulnerability management tools (e.g., ACAS, SCAP).
• Experience administering and securing Windows Server environments, including IIS.
• Strong technical documentation and communication skills.
Responsibilities Include:
• Lead the implementation, documentation, and continuous monitoring of Risk Management Framework (RMF) controls.
• Serve as the primary point of contact for all matters related to the system’s certification and accreditation (C&A) and ATO.
• Maintain and update all system security artifacts in eMASS, and create and manage Plans of Action & Milestones (POA&M).
• Apply and maintain DISA STIGs across the architecture, including Windows Server, Oracle databases, and IIS web servers.
• Perform and document ACAS and SCAP scan reviews and coordinate all vulnerability remediation efforts.
• Oversee enterprise-level system hardening, patching, and the management of configuration baselines (GPOs, local security policy).
• Ensure the secure configuration of server hardware and software within a distributed IT architecture.
• Secure applications and information using Public Key Infrastructure (PKI).
• Troubleshoot network, database, and application connectivity issues that impact performance or security.
• Draft and maintain critical security documentation, including System Security Plans (SSPs), Standard Operating Procedures (SOPs), and change requests for the Configuration Control Board (CCB).
• Ensure systems remain compliant with all DoD patching and IAVM directives.
• Performs other job-related duties as assigned.
Experience, Education, Skills, Abilities requested:
• Bachelor’s degree in a relevant technical field.
• CompTIA Security+ certification (or other DoD 8570 IAT Level II or higher certification) is required.
• Demonstrated experience with DoD Information Assurance policies and the full life cycle of the certification and accreditation (C&A) process and Authorization to Operate (ATO).
• Hands-on experience with the Risk Management Framework (RMF) and creating/managing artifacts in eMASS.
• Proven experience in a DoD environment troubleshooting desktop, web, database, or server problems.
• Strong understanding of DISA STIGs and vulnerability management tools (e.g., ACAS, SCAP).
• Experience administering and securing Windows Server environments, including IIS.
• Strong technical documentation and communication skills.
group id: 10112156