Information System Security Analyst

Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America. RMC is hiring an Information Systems Security Analyst to support Navy customers in Dahlgren, Virginia. The candidate will provide Cybersecurity analysis, engineering, and Certification and Accreditation (C&A)/Assessment and Authorization (A&A) support in accordance with Risk Management Framework (RMF), National Institute of Standards and Technology (NIST), and/or Platform Information Technology (PIT) methodologies.

The selected applicant will:

• Assist with the development of system IA documentation to support certification of compliance to applicable standards

• Ensure compliance with DoD and DoN Cybersecurity compliance requirements

• Ensure the uninterrupted delivery of information technology systems

• Support current and ongoing C&A packages

• Respond to Information Assurance Vulnerability Alerts (IAVAs) as necessary to address systems vulnerabilities

• Run and review systems security utilization logs per cybersecurity standards

• Implement and support cyber security standards to include NIST and Risk Management Framework (RMF) C&A Standards, which include, but is not limited to:

• Perform regular systems security scans, and maintain records of such scans, as required by cyber security guidelines

• Review, update, validate and author Cybersecurity procedures (SOPs) as required

• Review and maintain an inventory of authorized software

• Audit and validate configurations deployed on laptops, workstations, and servers

• Audit and validate configurations of network devices, systems, and applications based on DISA STIGs

• Monitor, review and report on data restoration capabilities

• Be familiar with HBSS and ACAS from a compliance and reporting perspective

• Posses system knowledge including ability to upload scan data

Requirements

• Five (5) years of experience in Information Assurance. Of the five (5) years, two (2) years of experience in cyber security policy and practice, application of cyber security policies to both systems and spaces, and performing physical security assessments in support of cyber security requirements (i.e. Traditional Security STIG). Must have demonstrated experience developing, reviewing, testing, assessing, and implementing security controls for systems and spaces. Must have experience monitoring and measuring cyber security policies, processes, and controls, performing impact analysis, and developing required documentation in accordance with RMF. Additional experience in System Administration preferred, but not required.

• The selected applicant must have DoD 8570/5239 IAM Level I or higher Certification (Security + CE, CISSP, CASP) and the ability to work independently and as part of a team in various environments.

• Security Clearance: An active DoD Secret clearance is required. Applicant selected may be subject to a security investigation and must meet eligibility requirements for access to classified information.

• Travel will be required for this position. The applicant must possess a current passport or be able to acquire one within 90 days of position start.

RMC employees may be subject to COVID-19 vaccination or testing requirements in order to access government facilities.