• Responsible for all activities involving quality assurance and compliance with applicable regulatory requirements; conducts audits and reviews/analyzes data and documentation.
• Perform cybersecurity engineering, information system or network self-assessments, and independent security control assessments IAW NIST SP 800-30, 800-37, 800-39, 800-53A, 800-137, Committee on National Security Systems Policy No. 22, CNSSI No. 1253 and 1254, DoDD 8000.01, DoDI 8500.01, DoD-I 8510.01, etc.
• Review system and network System Security Plans and Authority to Operate (ATO) packages within eMASS for completeness and accuracy leading to a favorable authorization decision.
• Prepare oral and written communication to develop and maintain the system security plan; prepare and present reports and recommendations; and prepare and update manuals, instructions, and operating procedures.
• Evaluate computer systems design, prototypes, and computer applications from an operational test and evaluation perspective for cybersecurity to perform tactical cyber security test and evaluation planning.
• Develop cybersecurity documentation such as SOPs/TTPs, system and network diagrams (boundary, data flow, network, etc), POA&Ms, Risk Assessment and Analysis Reports, etc.
• Apply and or assess applicable STIGs for assigned information systems and/or networks.

Required Qualifications

• 5 or more years’ experience in Cybersecurity or Information Assurance.
• DoD 8140 IASAE II certification (CASP or CISSP)
• Active DoD Secret Clearance
• Ability to travel approximately 25% based on mission requirements

​

Preferred Qualifications

NA

NA