Rmf Analyst - San Diego, United States - The Marlin Alliance

The Marlin Alliance
The Marlin Alliance
Verified Company
San Diego, United States

1 week ago

Mark Lane

Posted by:

Mark Lane

beBee recruiter
Description

The Marlin Alliance is seeking a highly motivated and experienced
RMF Analyst to join our team and support a DoD client with their Risk Management Framework (RMF) program.

You will play a leading role in guiding the client through all stages of the RMF process, culminating in obtaining an Authorization to Operate (ATO) for their information systems.


Established in 2002, The Marlin Alliance is seeking to hire highly skilled individuals to support mission critical projects within the Navy.

We are looking for motivated individuals to lead and support digital transformation, data science and analytics, and automation projects for variety of Navy clients.

Individuals must be able to function in a fast-paced work environment and able to adapt quickly to rapidly changing requirements and technologies.

Using your comprehensive knowledge of various technologies, you will design, develop, and implement solutions to support Navy mission owners in their digital transformation journey.


Responsibilities

  • Lead and manage the RMF process for assigned DoD information systems, ensuring compliance with DoD Instruction Risk Management Framework for DoD Information Systems and Organizations), OPNAV 5239.1E (U. S. Navy Cybersecurity Program) and other policies as required.
  • Conduct security assessments (Categorization, Selection, Implementation, Assessment, Authorization) in accordance with NIST SP and RMF 2.0 Security controls.
  • Analyze security control baselines, identify control gaps, and recommend corrective actions to mitigate risks.
  • Develop, document and submit RMF artifacts to Enterprise Mission Assurance Support Service (eMASS), including Security Assessment Plans (SAPs), Plans of Actions & Milestones (POAMs), Security Assessment Reports (SARs), and Packages for Authorization (PkAs).
  • Conduct and document activities to verify patch compliance for deployed security controls, ensuring timely remediation of vulnerabilities identified through Security Technical Implementation Guides (STIGs) and other vulnerability scanning tools.
  • Work collaboratively with the client's security team, system owners, and stakeholders to ensure a comprehensive and efficient RMF process.
  • Provide technical expertise and guidance on security controls, risk mitigation strategies, and continuous monitoring activities.
  • May participate in proposal development and client briefings related to RMF services.

Qualifications

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (Master's degree preferred).
  • Minimum 5+ years of experience in DoD Cybersecurity, Information Assurance, and Risk Management Framework.
  • DoD Manual IAT Level II baseline certification (CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP) is strongly desired.
  • Proven experience leading and managing the RMF process for DoD information systems, resulting in successful ATOs.
  • Indepth knowledge of NIST SP 80030, DoD Instruction , and DISA RMF guidance.
  • Strong understanding of security controls, risk assessment methodologies, and vulnerability management practices.
  • Experience working with information systems deployed on Microsoft Azure Government (Azure Gov) or Azure Government Secret (Azure Gov Secret) in accordance with DoD cloud computing security requirements is highly desired.
  • Excellent analytical, problemsolving, and communication skills.
  • Ability to work independently and as part of a team in a fastpaced environment.
  • Must be eligible to obtain a DoD security clearance (minimum Secret).

Work Environment and Mental/Physical Demands:


  • The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the functions._
  • Typical office environment with no unusual hazards.
  • The noise level in the work environment is usually moderate.
  • Constant sitting while using the computer terminal.
  • Constant use of sight abilities while reviewing documents.
  • Constant use of speech/hearing abilities for communication.
  • Occasional reaching, stooping, kneeling, or crouching may be required.
  • Occasional lifting, up to 20 pounds.
  • A constant state of mental alertness.
  • Frequent work under deadlines.

_Job Classification:
_
Associate II
$85,000 - $130,000


_Disclaimer:
_

  • To perform this job successfully, the incumbents will possess the skills, aptitudes, and abilities to perform each duty proficiently. Some requirements may exclude individuals who pose a direct threat or significant risk to the health or safety of themselves or others. The requirements listed in this document are the minimum levels of knowledge, skills, or abilities._
  • This document does not create an employment contract, implied or otherwise, other than an "atwill" relationship._
  • An Equal Opportunity Emp
More jobs from The Marlin Alliance
See all jobs of The Marlin Alliance