Job Description

Cydecor is a premier Federal Government solutions provider, delivering differentiated innovations in mission systems and business platforms.

We leverage leading-edge secure systems and software development, backed by industry-leading subject matter expertise, and business intelligence to enable decision-support and remain ahead of ever-evolving national security challenges.

Our success rests squarely on three bedrock principles: People, our center of gravity; Mission, what inspires us; and an unyielding commitment to Excellence, what separates us.

Job Description:

Cydecor is seeking an Information Assurance Manager (IAM) located in Norfolk, VA.

An active, DoD-issued security clearance at the secret level AND a current CISSP certification is required for this position.

The IAM will lead a team of Information System Security Engineers (ISSE) supporting the Navy Risk Management Framework (RMF) authorization process for the Navy Readiness Reporting Enterprise (NRRE) Family of Systems (FoS) program.

The position will primarily work at the Naval Support Activity Hampton Roads, in the NRRE Information Assurance Department.

Job responsibilities include but are not limited to:

• Responsible for leading and coordinating the RMF process and activities to include coordinating with the Echelon II Package Submission Office (PSO), the Navy Qualified Validation team, the Program Management Office (PMO) as well as interaction with the Navy Authorizing Official and the Navy Security Control Assessor.
• Role will also manage the workload for the NRRE IA team to ensure all team members are performing relevant work to support the NRRE FoS RMF packages.
• Serve as the primary interface with our Navy customer for all matters related to RMF package management.
• Provide guidance on IA matters during design, configuration, and modification of information systems; review system designs for IA directive compliance; recommend changes, mitigations, and remediation as needed.
• Review system documentation and governing policies for compliance with cybersecurity best practices.
• Maintain ATO packages using the Enterprise Mission Assurance Support Service (eMASS).
• Conduct annual security reviews (ASR) of authorized packages.
• Review and test security configurations described by DISA STIGs.
• Evaluate Navy security policy and provide recommendations.
• Monitor and review periodic vulnerability and IA compliance testing.
• Verify that applicable security measures identified by the IA Vulnerability Management (IAVM) program are applied.
• Monitor activities for mitigation and remediation of findings; draft and update Plans of Action and Milestones (POA&Ms).
• Participate in collaboration meetings with the Navy Authorizing Official, Security Controls Assessor, and Package Submitting Officer, as needed.
• Provide IA and risk analysis support as required.
• Create various reports of system compliance to include weekly ACAS reports, New IAVM releases, New STIG releases and provide monthly RMF roadmap updates
• Support the transition of all NRRE RMF packages from the current SP-800.53 Rev 4 control set to the Navy implementation of the SP-800.53 Rev 5 control set.

Here’s what you need:

• Minimum of 10 years of experience, of which at least 5 years must be specialized in network security solutions and products.
• 5 years of direct experience implementing the requirements of DoD 8500.01, 8510.01 series and associated instructions governing Cybersecurity and Risk Management Framework (RMF) for DoD Information Technology (IT).
• Must possess IAM Level II Information Assurance Certification as defined by DoD Instruction 85700.01-M and SECNAV M-5239.2.
• Expert knowledge of the U.S. Navy Assessment & Authorization Process
• Expert in the Risk Management Framework (RMF) defined by NIST SP800-53 Rev 4
• High level of knowledge and experience with the Navy’s RMF Process Guide (RPG)
• Direct experience with the Navy’s Validation Process
• Reviewing/Drafting Security Policies IAW with NIST SP800-53
• Using the Enterprise Mission Assurance Support Service (eMASS) to manage accreditation packages.
• Reviewing reports from Assured Compliance Assessment Solution (ACAS) or Microsoft Defender Endpoint (MDE).
• Experience using DISA’s STIG Viewer and supporting tools to identify and document vulnerabilities.

Required Certifications:

• Certified Information System Security Professional (CISSP)

Bonus points if you have:

• Certified Information Security Manager (CISM)
• Certified Cloud Security Professional (CCSP)
• CompTIA Advanced Security Practitioner (CASP)
• Any Microsoft Azure Certified security certification
• CompTIA Security+ and OS Level (Windows, Cloud) Certification: current or acquired within 3 months of hire

Security Clearance: DOD SECRET

Education:

• Bachelor’s degree in technical fields such as computer science, information systems management, mathematics, physics, operations research, statistics, engineering or related discipline from an accredited college or university.
• Master’s degree is desired.

Work Schedule: M-F, onsite

Benefits:

Cydecor offers a comprehensive compensation package including Health and Dental Insurance, Vision and Life Insurance, Short-Term & Long-Term Disability, 401(K) + company match, Paid Time Off (PTO), Paid Company Holidays, Tuition Assistance Program and more.

What We Believe

We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Cydecor has the responsibility to create and sustain an inclusive environment.

Equal Employment Opportunity Statement

Cydecor is an Equal Employment Opportunity/Affirmative Action Employer (EEO/AA). All employment and hiring decisions are based on qualifications, merit, and business needs without regard to race, religion, color, sexual orientation, nationality, gender, ethnic origin, disability, age, sex, gender identity & expression, veteran status, marital status, or any other characteristic protected by applicable law.

If you are a qualified individual with a disability and/or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to access job openings or apply for a job on this site because of your disability. You can request assistance by contacting HR@cydecor.com or calling 703-884-2105.

Job Tags

Similar Jobs