Information System Security Specialist - Virginia Beach, United States - Auria Space

    Auria Space
    Auria Space Virginia Beach, United States

    1 month ago

    Default job background
    Description

    Auria Space is looking for a Information System Security Specialist to support Naval Surface Warfare Center (NSWC) Dahlgren and Dam Neck (DNA) divisions to address security of naval warfare systems. The NSWC Dahlgren and DNA divisions provide research, development, Test & Evaluation (T&E), analysis, systems engineering, integration, and certification of complex naval warfare systems. NSWCDD-DNA is located in a major fleet concentration area, which enables it to leverage its unique laboratories and facilities for readiness and training systems. NSWCDD-DNAs work is focused on providing engineering, acquisition, logistical, and Cyber Security support to the Navy, Marine Corp, Special Warfare Coalition, and Joint Forces. The Information System Security Specialist will conduct Risk Management Framework (RMF) activities and will be familiar will all steps in the A&A process.

    The proposed salary range for this role is $85,000 - $120,000 depending on experience and other factors. Significant annual retention bonus also offered.

    Responsibilities:

    • Provide support for RMF activities to include selection, implementation, and assessment of security controls.
    • Review Government documentation to determine the system configuration, and missing documentation in order to assist with the creation of RMF artifacts delivered in eMASS.
    • Document all identified controls on its respective category in the security plan on the A&A reporting tool and RMF POA&M.
    • Evaluate if security controls are implemented consistent with DoD and DoD Component IA architectures and standards, employing system and software engineering methodologies, security engineering principles, and secure coding techniques.
    • Prepare the RMF POA&M based on the vulnerabilities identified during the security control assessment.
    • Assist the DoD component with monitoring and tracking the overall execution of system-level RMF POA&Ms across the entire component until identified security vulnerabilities have been remediated and the RMF documentation is appropriately adjusted.
    • Assemble the security authorization package and assist the Government in submitting the package to the AO for adjudication.
    • Continuously monitor the system or information environment for security relevant events and configuration changes that negatively affect security
    • posture and update RMF artifacts as required.
    • Periodically assess the quality of security controls implementation against performance indicators, such as security incidents, feedback from external inspection agencies, exercises, and operational evaluations.

    Requirements:

    • Secret clearance
    • Associate Degree OR one of the following certifications (CAP, CASP+, Security+, SSCP)
    • Shall have demonstrated experience with performing STIG assessments to include using SCAP benchmarks.
    • Shall have demonstrated experience performing vulnerability assessments with the Assured Compliance Assessment Solution (ACAS) tool.
    • Shall have demonstrated experience using eMASS.
    • Shall have experience in developing Plans of Actions and Milestones (POA&M) entries.

    Don't meet every single requirement? If you're excited about this role, but your past experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.