Job Requirements
Norfolk, VA
Secret Polygraph not specified
Senior Level Career (10+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Job Title: Senior Assessment & Authorization (A&A) Support Lead
Clearance Required: SECRET
Location: Norfolk, VA with potential CONUS/OCONUS travel
Position Type: Full‑time - Contingent upon contract award
Overview:
enGenius is seeking a Senior A&A Support Lead to provide expert-level support to the Military Sealift Command (MSC) Cybersecurity Division (N62) in performing Assessment & Authorization (A&A) activities under the DoD Risk Management Framework (RMF). This position ensures MSC networks, systems, and afloat platforms meet all cybersecurity authorization requirements through comprehensive assessment, documentation, validation, and coordination with Navy Security Control Assessors.
This senior role requires technical depth in RMF execution, strong communication and leadership skills, and the ability to interpret and apply DoD cybersecurity policy in an operational maritime environment.
Key Responsibilities:
Assessment & Authorization (A&A) Execution -
Lead and conduct security control assessments, system validations, and documentation reviews in accordance with DoDI 8510.01 and Navy-specific RMF guidance.
• Prepare, update, and maintain complete A&A documentation for MSC systems, networks, and sites, including System Security Plans, hardware/software inventories, diagrams, STIG results, scan data, and POA&Ms.
• Serve as Subject Matter Expert for eMASS population, ensuring all compliance/non-compliance data, artifacts, scans, and required documentation are accurately entered and maintained.
• Develop and submit Frequency Mission-Based Cyber Risk Assessment (MBCRA) test plans and reports when required.
Validation & Testing -
Perform validation testing for systems and sites using automated tools, manual inspections, interviews, documentation reviews, and facility walk-throughs.
• Document compliant/non-compliant results with detailed criteria supporting each determination.
• Create custom validation procedures when published guidance does not exist (approx. twice annually).
RMF Lifecycle Support –
Support ongoing authorization maintenance, Annual Security Reviews, and POA&M updates for all MSC systems.
• Track and maintain status of A&A packages, waivers, and authorization milestones across MSC’s portfolio.
Policy Interpretation & Reporting –
Review and provide feedback on DoD cybersecurity policies, directives, orders, and instructions applicable to the Afloat community.
• Analyze and interpret DoD policies (e.g., DoDI 8500, DoDM 5200) to provide guidance to stakeholders.
• Support responses to FISMA and data call requests related to A&A.
Team Leadership & Stakeholder Engagement –
Collaborate with shipboard crews, ISSMs, system owners, cybersecurity engineers, and MSC leadership.
• Provide guidance and mentorship to junior A&A personnel.
• Prepare and deliver briefings, reports, and updates for Government leadership and other stakeholders.
Required Qualifications:
Experience in information technology security with significant background in DoD cybersecurity processes.
• Must meet DoD 8570.01‑M IAM Level III certification requirements (e.g., CISSP, CISM, GSLC).
• Must hold Navy Qualified Validator (NQV) designation.
• Experience with the DoD RMF process (assessment and authorization).
• Proficiency in eMASS and familiarity with VRAM, ACAS, STIGs, and other DoD cybersecurity tools.
• Ability to interpret and apply DoD cybersecurity policy frameworks (e.g., 8500-series, 5200-series).
• Strong written and verbal communication skills.
• Advanced proficiency with Microsoft Office products (Excel, PowerPoint, Word).
• Must be a U.S. citizen.
• SECRET clearance required. Verification required.
Preferred Qualifications:
Experience supporting Navy or MSC afloat systems.
• Familiarity with C4S operational environments and maritime system architectures.
• Experience mentoring or leading cybersecurity assessment teams.
• Experience conducting system or site validations for large-scale DoD programs.
Physical & Travel Requirements:
Ability to support occasional CONUS/OCONUS travel for site assessments and shipboard validations per requirements.
• Able to work in shipboard, industrial, or office environments as mission requires.
enGenius Consulting Group, Inc. is an Equal Employment Opportunity Employer
M / F / D / V
Clearance Required: SECRET
Location: Norfolk, VA with potential CONUS/OCONUS travel
Position Type: Full‑time - Contingent upon contract award
Overview:
enGenius is seeking a Senior A&A Support Lead to provide expert-level support to the Military Sealift Command (MSC) Cybersecurity Division (N62) in performing Assessment & Authorization (A&A) activities under the DoD Risk Management Framework (RMF). This position ensures MSC networks, systems, and afloat platforms meet all cybersecurity authorization requirements through comprehensive assessment, documentation, validation, and coordination with Navy Security Control Assessors.
This senior role requires technical depth in RMF execution, strong communication and leadership skills, and the ability to interpret and apply DoD cybersecurity policy in an operational maritime environment.
Key Responsibilities:
Assessment & Authorization (A&A) Execution -
Lead and conduct security control assessments, system validations, and documentation reviews in accordance with DoDI 8510.01 and Navy-specific RMF guidance.
• Prepare, update, and maintain complete A&A documentation for MSC systems, networks, and sites, including System Security Plans, hardware/software inventories, diagrams, STIG results, scan data, and POA&Ms.
• Serve as Subject Matter Expert for eMASS population, ensuring all compliance/non-compliance data, artifacts, scans, and required documentation are accurately entered and maintained.
• Develop and submit Frequency Mission-Based Cyber Risk Assessment (MBCRA) test plans and reports when required.
Validation & Testing -
Perform validation testing for systems and sites using automated tools, manual inspections, interviews, documentation reviews, and facility walk-throughs.
• Document compliant/non-compliant results with detailed criteria supporting each determination.
• Create custom validation procedures when published guidance does not exist (approx. twice annually).
RMF Lifecycle Support –
Support ongoing authorization maintenance, Annual Security Reviews, and POA&M updates for all MSC systems.
• Track and maintain status of A&A packages, waivers, and authorization milestones across MSC’s portfolio.
Policy Interpretation & Reporting –
Review and provide feedback on DoD cybersecurity policies, directives, orders, and instructions applicable to the Afloat community.
• Analyze and interpret DoD policies (e.g., DoDI 8500, DoDM 5200) to provide guidance to stakeholders.
• Support responses to FISMA and data call requests related to A&A.
Team Leadership & Stakeholder Engagement –
Collaborate with shipboard crews, ISSMs, system owners, cybersecurity engineers, and MSC leadership.
• Provide guidance and mentorship to junior A&A personnel.
• Prepare and deliver briefings, reports, and updates for Government leadership and other stakeholders.
Required Qualifications:
Experience in information technology security with significant background in DoD cybersecurity processes.
• Must meet DoD 8570.01‑M IAM Level III certification requirements (e.g., CISSP, CISM, GSLC).
• Must hold Navy Qualified Validator (NQV) designation.
• Experience with the DoD RMF process (assessment and authorization).
• Proficiency in eMASS and familiarity with VRAM, ACAS, STIGs, and other DoD cybersecurity tools.
• Ability to interpret and apply DoD cybersecurity policy frameworks (e.g., 8500-series, 5200-series).
• Strong written and verbal communication skills.
• Advanced proficiency with Microsoft Office products (Excel, PowerPoint, Word).
• Must be a U.S. citizen.
• SECRET clearance required. Verification required.
Preferred Qualifications:
Experience supporting Navy or MSC afloat systems.
• Familiarity with C4S operational environments and maritime system architectures.
• Experience mentoring or leading cybersecurity assessment teams.
• Experience conducting system or site validations for large-scale DoD programs.
Physical & Travel Requirements:
Ability to support occasional CONUS/OCONUS travel for site assessments and shipboard validations per requirements.
• Able to work in shipboard, industrial, or office environments as mission requires.
enGenius Consulting Group, Inc. is an Equal Employment Opportunity Employer
M / F / D / V
group id: 10115335