Job Requirements
Scott AFB, IL
Secret Polygraph Unspecified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries
Job Description
Overview
DecisionPoint is looking for an Information Assurance Technician to join the Cloud Services (CS) team. The CS team maintains the ARTRANS AWS cloud environments and DevSecOps platform.
In this role, will provide the Risk Management Framework (RMF) security artifacts required to allow ARTRANS programs of record (POR) to inherit NIST SP 800-53 standard RMF controls from the DevSecOps platform to obtain an ATO. These controls include any requirement needed to maintain an ATO while using the DevSecOps platform. This position ensures that all required artifacts are kept up to date.
This position is 100% remote work and requires an active Secret clearance.
Duties & Responsibilities
Qualifications
DecisionPoint is looking for an Information Assurance Technician to join the Cloud Services (CS) team. The CS team maintains the ARTRANS AWS cloud environments and DevSecOps platform.
In this role, will provide the Risk Management Framework (RMF) security artifacts required to allow ARTRANS programs of record (POR) to inherit NIST SP 800-53 standard RMF controls from the DevSecOps platform to obtain an ATO. These controls include any requirement needed to maintain an ATO while using the DevSecOps platform. This position ensures that all required artifacts are kept up to date.
This position is 100% remote work and requires an active Secret clearance.
Duties & Responsibilities
- Creation and maintenance of the RMF artifacts required for full inheritance from the DevSecOps pipeline.
- Complete all NIST 800-53 Rev 5 artifacts for the code, compute, storage, and network components of the DevSecOps pipeline.
- Provide artifacts to the ARTRANS G6/IA team for ingestion into eMASS.
- Ensure DevSecOps pipeline POR's can inherit controls from the DevSecOps pipeline.
- Evaluate each PORs current Risk Assessment (RA), Plans of Action and Milestones (POAMS) and application tech stack and develop a plan to enable full inheritance from the DevSecOps pipeline tools.
- Complete and validate STIG/SRG checklists for RMF, quarterly.
- Complete monthly application STIG status reports and POA&M updates.
- Ensure associated risks are evaluated, documented, and reported along with risk mitigation and recommend a course of action.
Qualifications
- Strong understanding of NIST 800-53 Rev 5 framework
- Active Secret Clearance required.
- Associates degree with 3 years related work experience or 8 years of continuous related work experience
- DoD 8140 Information Assurance Management (IAM) Level I Certification (Security+ CE)
group id: 91114045