- Experience Auditing and building RMF A&A packages including scanning for both classified and unclassified operational technology and Information Technology (IT) systems.
- Understanding of SCADA theory, operation and programming
- Perform reviews of Risk Management Framework (RMF) assessment and authorization (A&A) accreditation packages prior to submission to Approving Authority
- Correction of RMF Artifacts when required
- Perform reviews of Platform IT (PIT) RMF packages prior to submission to Approving Authority
- Strong Proficiency in performing Vulnerability scanning and analysis using Assured Compliance Assessment Solution (ACAS) and NESSUS tools, and develop Plan of Actions and Milestones (POA&M) for corrective actions
- Author Risk assessment and risk mitigation reports
- Identify and validate Security Controls Using appropriate NIST Publications
- In depth understanding of common Ports, Protocols, and Services
- Ability to author a Contingency Operations Plan (COOP) with Stakeholders
- Identification and application of DISA STIGS
- Knowledge of Boundary Defense and Identification
- Knowledgeable in C&A/A&A requirements and processes
- Knowledgeable in Information Assurance/Cybersecurity policy development, review and/or implementation
- Knowledgeable in System analysis, preparation of Test Plans, security test and evaluation and development of reports regarding test outcomes including development of POA&Ms
- Audits and validates configurations deployed on laptops, workstations, and servers
- Audit and validate configurations of network devices based on DISA STIGs, or defining and implementing compensating controls of such STIGs as required to ensure mission execution.
- Maintain and update all Risk Management Framework (RMF) and C&A documentation to ensure the relevancy and currency to include required revisions and updates in eMass or MCCAST.
- Conduct comprehensive annual RMF package reviews to ensure continued compliance of the customer Networks.
- Ensure traceability is maintained throughout the RMF submission process (e.g.: C&A Plan, POAM, RAR, Topology, Software, Ports Protocols and Services, Test Plan).
- Maintain documentation and registration of Network Ports, Protocols, and Services.
- Maintain and report on the status of all outstanding C&A items and supporting documentation.
- Provide recommendations for corrective action of any non-compliant security controls.
- Execute DISA STIG validations for systems in conjunction with C&A package reviews annually.
- Provide security expertise to ensure security controls are implemented and the resulting documentation and artifacts are current.
- Prepare reports on scanning results and configuration management observations as requested.
- Document assessment activities and results in sufficient detail to enable an external review of all assessment processes, activities, results, and conclusions.
- Ability to work both independently and as a member of a team.
- Ability to be selfmotivated and multitask with limited supervision in a fastpaced environment.
- Ten (10) years of professional experience. Experienced in the management of Information Assurance Technical (IAT), certification agents and system engineers on the compliance requirements to achieve certification and accreditation IAW the DoD RMF program and the Department of Navy (DON) Chief Information Officer (CIO) IA Policy for Platform Information Technology (PIT) Systems. Ten (10) years of support to the DON or DoD, preferably as an Information Assurance Management (IAM), Certification Agent and/or Designated Approval Authority and Certification Authority staff.
- Demonstrated background and experience in Information Assurance, C&A, RMF Assessment and Authorization (A&A), eMass, STIG Auditing and remediation
- Experience utilizing assessment tools (e.g., ACAS, SCAP, HBSS) and RMF process tools (e.g., MCCAST, eMASS, eArcher, VRAM and DITPR-DON/DADMS)
- Must have a current SECRET security clearance.
- Must be a Certified Fully Qualified Navy Validator Level III
- Required to meet DOD Directive 8570.1/ Cybersecurity Work Force IAT-II criteria, (ex: CAP, CASP CE, CISM, CISSP or Associate, GSLC).
- One of the following: CAP, CASP CE, CISM, CISSP or Associate, GSLC
- Certification as a Fully Qualified Navy Validator (FQNV) Level 3
- Target Education: Bachelor of Science in Computer Science.
-
Navy Qualified Validator
3 days ago
Imagine One Technology & Management Ltd Norfolk, United StatesJob Description · Job DescriptionImagine One is seeking an experienced Navy Qualified Validator (NQV) to join a team of validators. The NQV team supports assessment efforts for multiple information technology (IT) systems across a large NAVY maintenance environment located in Nor ...
-
Navy Qualified Validator NQV Hybrid
3 weeks ago
Watershed Security Norfolk, United StatesJob Description · Job DescriptionCOMPANY OVERVIEW · Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment ...
-
Certified Navy Qualified Validator
2 weeks ago
Cybrex LLC Norfolk, United StatesResponsibilities/Knowledge/Skills: · - Experience Auditing and building RMF A&A packages including scanning for both classified and unclassified operational technology and Information Technology (IT) systems. · - Understanding of SCADA theory, operation and programming · - Perfor ...
-
Remote Fully Qualified Navy Validator
2 weeks ago
Watershed Security Virginia Beach, United StatesJob Description · Job DescriptionCOMPANY OVERVIEW · Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment ...
-
HVAC Truck Based Chiller Mechanic
3 weeks ago
Johnson Controls International Norfolk, United States· What you will do · We are looking for a skilled Journeymen Chiller Mechanic who has worked in commercial, industrial, and/or institutional markets to join our team. Candidates should have a minimum of 5 years' chiller experience, with knowledge of maintenance procedures, troub ...
-
HVAC Team Lead Mechanic
3 weeks ago
Johnson Controls International Norfolk, United StatesWhat you will do · Are you self-motivated and looking to lead a team of 12 – 15 field technicians? Do you want to be able to provide top of the line offerings for yourself and your team? If so, we are looking for YOU to join OUR team · We provide factory certification through o ...
-
registered nurse
15 hours ago
ResCare Community Living Norfolk, VA, United StatesOur Company: · ResCare Community Living · Overview: · Join a team of passionate and caring clinicians who make a difference in people's lives. Our nursing group focuses on compassion and meeting the needs of our clients in a variety of settings. If your passion is outstanding pat ...
-
Suppression Installer
3 weeks ago
Johnson Controls International Norfolk, United StatesBe part of the future · We are one team, dedicated to working collaboratively to create the purposeful solutions that propel the world forward. We hope you will join our diverse team of top people – you bring your talent, and we'll give you the space and opportunities to grow and ...
-
Sprinkler Inspector
20 hours ago
Johnson Controls International Norfolk, United States Full timeWhat you will do · Inspectors are responsible for conducting routine inspections, testing, service, and preventative maintenance on Electrical, Sprinkler or Suppression life safety product lines as well as similar competitive manufacturers' product lines. Work with low voltage w ...
-
HVAC Truck Based Mechanic
3 weeks ago
Johnson Controls Norfolk, United States Full timeWhat you will do · Do you have HVAC experience? We are looking for skilled Journeymen who have worked in residential, light commercial and/or heavy commercial markets to join our team to work with the most advanced heavy commercial and industrialcutting-edgeequipment. · We prov ...
-
Controls Systems Designer
3 weeks ago
Johnson Controls International Norfolk, United StatesBe part of the future · We are one team, dedicated to working collaboratively to create the purposeful solutions that propel the world forward. We hope you will join our diverse team of top people – you bring your talent, and we'll give you the space and opportunities to grow and ...
-
Vocational Manager
2 weeks ago
Integrated Life Choices Norfolk, United StatesVocational Manager - Norfolk · Integrated Life Choices is seeking a detail-oriented, team-building leader for a Vocational Manager position to manage staff and vocational programming. This position ensures proper supports are provided to persons with developmental disabilities ...
-
Grassroots Protest Coordinator
1 week ago
PETA Norfolk, United States Full timeDescription · Position Objective: · To work with activists to increase the effectiveness and frequency of activism and to encourage deeper commitments to animal rights and PETA · Primary Responsibilities and Duties: · • Encourage and facilitate local grassroots activism in t ...
-
Automotive Service Technician
3 weeks ago
Cavalier Ford Lincoln Norfolk, United StatesIf you are looking for an opportunity to work for a fast growing, family owned dealership, Cavalier Ford Lincoln is for you Cavalier Ford Lincoln is always looking for a qualified individuals to join our sales and service teams to help handle the overflow of work we are experienc ...
-
School Speech Language Pathologist
5 days ago
Soliant Norfolk, United StatesMinimum 1+ years speech therapy experience required. · Job Posting: School-Based Speech-Language Pathologist (SLP) Norfolk, VA · Position: School-Based Speech-Language Pathologist (SLP) · Location: Norfolk, Virginia · Company: Soliant · About Us: Soliant and its affiliates are pr ...
-
Paratransit Drivers
1 week ago
Easton Coach Company Norfolk, VA, United States Full timeJoin Easton Coach Company, a leading provider of passenger ground transportation, and become a valued member of our expanding team of Full-Time Non-CDL Drivers. Don't have any experience? No worries We welcome walk-ins and provide comprehensive training to set you up for success ...
-
Shop Crane Technician Trainee
1 week ago
Manitowoc Norfolk, United States Full timeThe Shop Crane Tech Trainee is responsible for assisting the shop with various assigned duties. This position reports to the Service Manager. · MGX Equipment Services has multiple openings at our branches across the ., including but not limited to: · Baltimore, MD · Norfolk, VA ...
-
Specimen Collector Phlebotomist
3 weeks ago
Millennium Health Norfolk, United StatesFull Time Specimen Collector Phlebotomist · Location: Norfolk, Virginia · Schedule: Full Rime. Mondays, Tuesdays, Thursdays, Fridays 6:00am - 3:00pm · Help make a positive impact in your community · Millennium Health LLC is an accredited specialty laboratory with more than a dec ...
-
Material Handler
6 days ago
FedEx Norfolk, United StatesJob Duties · Provides safe and efficient operation of equipment used for the movement of packages/documents/heavyweight, dangerous goods and ULDs. Assists in the buildup/breakdown of pallets containing heavyweight freight. Serves as liaison between company and ULD repair vendor, ...
-
Aircraft Worker
3 weeks ago
M1 Support Services Norfolk, United StatesAircraft Worker · Location Norfolk, VA · Job Posting No , scrollto the bottom of the page andclick "Apply for this position." · Start Date 06/01/2024 · Contract CFT Norfolk · Salary Range CFTNWD · Posting Date 04/03/2024 · Union No · FLSA Status Non-Exempt · Shift Work Possi ...
Certified Navy Qualified Validator - Norfolk, United States - Cybrex LLC
Description
Job Description
Job DescriptionCybrex is seeking a Certified Fully Qualified Navy Validator with extensive knowledge and experience with the Risk Management Framework (RMF) Process and the phases of Certification and Accreditation (C&A) process. Experience in an IA or C&A related field. Satisfies provisions of CNSS no Risk Analyst), Intermediate Level, but is not required to hold the certificate. Demonstrate in-depth knowledge of all C&A subject areas with in-depth familiarity and understanding of Navy IT sites, systems and infrastructure; applies Navy C&A guidance to Navy C&A efforts. Experience working with Navy C&A efforts as a Navy Validator. Strong writing skills to develop and maintain System Security Plans (SSP), Contingency Plans, Privacy Impact Assessments, Certification Reports, Accreditation Reports, Plan of Action & Milestones (POA&M), and other C&A documentation. Demonstrates oral and written communication skills to work closely with all levels of personnel involved in IT operations and technical aspects of systems. This position is an IAM Level II in accordance with Cyber Security Workforce Guidelines. The candidate will have extensive experience as a Risk Management Framework (RMF) Specialist providing Risk Management Framework (RMF) assessment and authorization (A&A) support. Systems will be both classified and unclassified operational Information Technology (IT) Networks, and systems. The candidates will have an advanced level understanding of Risk Management Framework (RMF), provide technical analysis for Information Assurance (IA)/Cyber Security (CS) support and integration efforts, and perform Subject Matter Analysis of RMF A&A documentation prior to submission for ATO Approval. Candidates will be capable of authoring RMF Artifacts if needed and have a current Secret Security Clearance.Responsibilities/Knowledge/Skills:
