Future Technologies Inc.

  • Information Assurance Specialist

    Job Locations US-MD-Patuxent River
    Posted Date 3 months ago(9/19/2018 3:37 PM)
    Job ID
    2018-1190
    # of Openings
    1
    Category
    Information Technology
  • Overview

    Information Assurance Specialist

    Pax River, MD

    Responsible for the complex IA requirements of multiple participant activities including Program Management, RDT&E, Logistics, Technical, and Sustainment in a Joint environment.  Provides recommendations and guidance to aid in the management of the functional and cross-functional requirements and interrelationships of a joint program ensuring they are coordinated, managed, and communicated across the participant activities.

     

    #IND123

    Responsibilities

    Duties Include:

    • Advise Program Office Management, Operations & Maintenance Lead, and System Engineering Leads on IA requirements and help provide solutions to meet requirements.
    • Advise Naval Aviation Command (NAVAIR) on Department of the Army IA requirements (AR 25-1, AR 25-2, Networthiness Certificate of Networthiness (CoN) processes, etc.) for software applications and information systems.
    • Create/review Information Security sections for PMO documents. Review and comment on IA components of Contractor Submitted Documents.
    • Prepare Certification and Accreditation (C&A) documentation to support the Risk Management Framework (RMF) approval process within the Department of the Navy (DON), USMC, Army and USAF.
    • Provide information for use in improving the C&A guidance and recommendations to APMs, Echelon II, and Fleet authorities to reflect changing needs and best practices in IA
    • Provide notification to the C&A community regarding program issues according to established CA guidelines.
    • Review and track C&A documentation provided by programs of record (POR), centrally managed systems, Joint Programs and Systems, Legacy, site, Architecture and locally acquired programs to ensure that RMF documentation complies with the provision of DoD 8500 series IA policy directives and the DoD 8510.01 (RMF) instruction.
    • Provide documentation security analysis and review; summarize required information in CA Endorsement Letters to support CA risk determination and IATO/ATO recommendations.
    • Act as subject matter expert regarding DIACAP/RMF documentation and certification evidence of programs, sites, and users.
    • Provide risk assessment critiques and evaluations relative to NIST 800-30 and 800-53.
    • Act as expert in DoDI 8500.2 IA controls and common vulnerabilities and exposures (CVE).
    • Perform audits of C&A activity through critical review and tracking C&A documentation.
    • Provide recommendation for new product development.
    • Run IA security analysis tools on source code bases and advise PMO of code IA status.
    • Run ACAS and SCAP Scans on target platforms.
    • Provide guidance to contractor development leads and program managers on how to incorporate the DoD Information Assurance Requirements into the entire software development life cycle.
    • Write Information Security/Assurance sections for contract proposals..
    • Develop threat models, system security plans, information assurance test plans for various applications.

    Qualifications

    Five to eight years of current experience and detailed knowledge of the DoD Information Assurance processes to include DoD 5239 series, DoD 8500 series, and other service specific lA requirements preferred.  Experience working in a joint services environment with a detailed understanding of the related joint requirements. Must also have understanding and experience of service specific lA rules.  Experienced technical writer with detailed knowledge of the Risk Management Framework  (RMF) and NETWARCOM instructions/requirements. Additionally, must have experience and understanding of the DoN Application and Database Management System (DADMS) and other service-specific application management systems for all program applications. Current IAM Level II certification or 6 months to obtain. Ability to obtain a DoD Secret security clearance. Certified Navy Validator Certification preferred and RMF experience desired.

    Security+ ce and 5 - 8 years experience.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed