Senior Cybersecurity Specialist at Smartronix in Norfolk, VA
Our tradition of delivering innovative, technical solutions dates back to 1995, however, you may know us better by one of our legacy company names:
Trident Technologies, Smartronix, Datastrong or C2S Consulting Group. With the support of OceanSound Partners, our private equity investment sponsor, we began operating as one business starting in 2019 and became SMX in 2021. We operate in close proximity to our clients around the globe and have core locations in Alabama, California, DC Metro, Florida, Hawaii, Maryland, and Massachusetts. Today, as SMX, we are one team and together empower government and commercial enterprises to become more effective, innovative, and resilient, no matter what challenges they face. Smartronix is seeking a Senior Cybersecurity Specialist in Norfolk, VA. Duties &
Responsibilities:
Collaborate with existing ISSO/ISSEs in completing A&A activities through RMF Step 3, including, but not limited to:
Mitigate and/or remediate vulnerabilities or misconfigurations Provide documentation findings and severity levels of non-compliance in formalized reporting Create/manage POA&M items Collect system specific information in developing required artifacts Draft SAP, SAR and RAR Required Skills and
Experience:
Clearance Required:
Top Secret At least Five (5) year experience in RMF A&A support, extensive knowledge and hands on experience in developing and documenting processes and procedures used in various IT operations and cybersecurity plans and required A&A artifacts, such as Access Control Plan (ACP), Configuration Management Plan (CMP), Information System Contingency Plan (ISCP) that can effectively address RMF security control requirements, Assured Compliance Assessment Solution (ACAS) and Host Based Security System (HBSS) Support:
At least three (3) year working experience in HBSS and ACAS management and vulnerability assessment. Analyzing ACAS and Security Compliance Assessment Protocol (SCAP) vulnerability scan results, Development of Security Assessment Plan (SAP) and Risk Assessment Report (RAR), Conducting manual checklists on applicable Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs), Mitigating/eliminating vulnerabilities findings Experience implementing applicable Computer Network Defense (CND) policies, regulations, and compliance guidance, Security Control and Control Correlation Identifiers (CCIs)/Assessment Procedures (APs) implementation, Self-assessment of administrative controls and CCIs/APs Knowledge of security plan management and validation, Developing and supporting Plan of Actions and Milestones (POA&M) items for outstanding findings, including drafting of mitigation and impact statements. CISSP DoD Cybersecurity Workforce (CSWF) CSSP Analyst certification (i.e., CEH, CCNA-Security) Navy Qualified Validator II DISA ACAS Certification DISA HBSS Certification Desired
Experience:
Navy Qualified Validator III Vaccination is a requirement of the position per Executive Order 14042. If a candidate is not vaccinated, they may request an accommodation once offered the position. The accommodation must be granted prior to the employee starting in the position. Candidate will have 60 days to get vaccinated.
Salary Range:
$80K -- $100K
Minimum Qualification
IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
Trident Technologies, Smartronix, Datastrong or C2S Consulting Group. With the support of OceanSound Partners, our private equity investment sponsor, we began operating as one business starting in 2019 and became SMX in 2021. We operate in close proximity to our clients around the globe and have core locations in Alabama, California, DC Metro, Florida, Hawaii, Maryland, and Massachusetts. Today, as SMX, we are one team and together empower government and commercial enterprises to become more effective, innovative, and resilient, no matter what challenges they face. Smartronix is seeking a Senior Cybersecurity Specialist in Norfolk, VA. Duties &
Responsibilities:
Collaborate with existing ISSO/ISSEs in completing A&A activities through RMF Step 3, including, but not limited to:
Mitigate and/or remediate vulnerabilities or misconfigurations Provide documentation findings and severity levels of non-compliance in formalized reporting Create/manage POA&M items Collect system specific information in developing required artifacts Draft SAP, SAR and RAR Required Skills and
Experience:
Clearance Required:
Top Secret At least Five (5) year experience in RMF A&A support, extensive knowledge and hands on experience in developing and documenting processes and procedures used in various IT operations and cybersecurity plans and required A&A artifacts, such as Access Control Plan (ACP), Configuration Management Plan (CMP), Information System Contingency Plan (ISCP) that can effectively address RMF security control requirements, Assured Compliance Assessment Solution (ACAS) and Host Based Security System (HBSS) Support:
At least three (3) year working experience in HBSS and ACAS management and vulnerability assessment. Analyzing ACAS and Security Compliance Assessment Protocol (SCAP) vulnerability scan results, Development of Security Assessment Plan (SAP) and Risk Assessment Report (RAR), Conducting manual checklists on applicable Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs), Mitigating/eliminating vulnerabilities findings Experience implementing applicable Computer Network Defense (CND) policies, regulations, and compliance guidance, Security Control and Control Correlation Identifiers (CCIs)/Assessment Procedures (APs) implementation, Self-assessment of administrative controls and CCIs/APs Knowledge of security plan management and validation, Developing and supporting Plan of Actions and Milestones (POA&M) items for outstanding findings, including drafting of mitigation and impact statements. CISSP DoD Cybersecurity Workforce (CSWF) CSSP Analyst certification (i.e., CEH, CCNA-Security) Navy Qualified Validator II DISA ACAS Certification DISA HBSS Certification Desired
Experience:
Navy Qualified Validator III Vaccination is a requirement of the position per Executive Order 14042. If a candidate is not vaccinated, they may request an accommodation once offered the position. The accommodation must be granted prior to the employee starting in the position. Candidate will have 60 days to get vaccinated.
Salary Range:
$80K -- $100K
Minimum Qualification
IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
