Abacus Solutions Group: We're built on our shared core values! We are difference-makers, passionate about serving, we work hard with integrity and do the right thing. Difference makers means that we look at every opportunity as a chance to make a difference. Passionate about serving means that we are always looking for ways to serve our customers and coworkers. Working hard and doing the right thing with integrity means that for every decision we make we first ask, “Is the decision consistent with our moral and ethical principles?" We hire, review, reward and recognize our teammates based on these characteristics, so it is important that you share these values to be part of the team.
Position Overview: We’re hiring a Risk Management Framework (RMF) Subject Matter Expert to support the Space Systems Command work in Albuquerque, NM. In this role, you will be involved in all aspects of cybersecurity operations and will partner with program/site leads as well as government staff and mission partners to maintain an effective information security program.
Position Responsibilities:
- Lead and work as part of an integrated team to develop and maintain RMF body of evidence documentation (e.g., System Security Plan, Security Controls Traceability Matrix, Plan of Action and Milestones, etc.) using Enterprise Mission Assurance Support Service (eMASS) and/or Microsoft products such as Word, Excel, PowerPoint, and Visio
- Maintain repositories of all body of evidence documentation for systems under your purview and ensure they are accessible only to properly authorized individuals
- Develop and execute security control assessment procedures to verify conformance with control requirements as part of ongoing continuous monitoring and authorization assessment activities
- Work in close coordination with system administrators and other cyber team members to ensure systems are operated, maintained, and disposed of in accordance with applicable security policies and procedures and notify the ISSO/ISSM when changes occur that might impact system authorization posture
- Ensure all security-related vulnerabilities and deficiencies are documented in the Plan of Action and Milestones (POA&M)
- Ensure the development and implementation of an effective information security education, training, and awareness program
- Ensure configuration management policies and procedures for authorizing use of hardware/software on a system are followed and coordinate any additions, changes or modifications to hardware, software, or firmware with the ISSO/ISSM prior to the addition, change or modification
Required Education and Experience:
- Bachelor’s degree in Computer Science, Cybersecurity or other related field and nine (9) years or more experience, or Master’s degree and seven (7) years or more experience
- Five (5) years of experience working in information assurance or cybersecurity roles supporting classified DoD environments
- DoD 8570 IAM Level II or higher baseline certification (CISSP preferred)
- Additional training and/or certifications may be required within 6 months of hire
- Acceptable baseline certifications can be found at https://public.cyber.mil/cw/cwmp/dod-approved-8570-baseline-certifications/
- Strong working knowledge of NIST 800-53 controls and RMF
- Experience analyzing and interpreting outputs of various endpoint security, vulnerability, and enumeration tools (e.g., Tenable Nessus, Security Center, SolarWinds, EndPoint Security Solutions, Vulnerator, SCAP Compliance Checker)
Security Clearance Requirements:
- Must possess and active Top Secret Security Clearance with ability to obtain SCI
- Position open only to U.S. Citizens
Pay & Benefits: $60-77/hr. Relocation assistance available. We offer a wide range of medical benefits, employee resources and strategic discount alliances. These benefits include co-pay medical benefits, company matching 401K, Choice Time Off, Long Term and Short-Term Disability Insurance, Life Insurance, and other ancillary benefits.