Information System Security Analyst

Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America. RMC is hiring an Information Systems Security Analyst to support Navy customers in Dahlgren, Virginia. The candidate will provide Cybersecurity analysis, engineering, and Certification and Accreditation (C&A)/Assessment and Authorization (A&A) support in accordance with Risk Management Framework (RMF), National Institute of Standards and Technology (NIST), and/or Platform Information Technology (PIT) methodologies.

The selected applicant will:

• Assist with the development of system IA documentation to support certification of compliance to applicable standards.
• Ensure compliance with DoD and DoN Cybersecurity compliance requirements.
• Ensure the uninterrupted delivery of information technology systems.
• Support current and ongoing C&A packages.
• Respond to Information Assurance Vulnerability Alerts (IAVAs) as necessary to address systems vulnerabilities.
• Run and review systems security utilization logs per cybersecurity standards. 
• Implement and support cyber security standards to include NIST and Risk Management Framework (RMF) C&A Standards, which include, but are not limited to:
• Perform regular systems security scans and maintain records of such scans, as required by cyber security guidelines.
• Review, update, validate, and author Cybersecurity procedures (SOPs) as required.
• Review and maintain an inventory of authorized software.
• Audit and validate configurations deployed on laptops, workstations, and servers.
• Audit and validate configurations of network devices, systems, and applications based on DISA STIGs.
• Monitor, review, and report on data restoration capabilities.
• Be familiar with HBSS and ACAS from a compliance and reporting perspective.
• Possesses system knowledge, including the ability to upload scan data.

Requirements

• Five (5) years of experience in Information Assurance. Of the five (5) years, two (2) years of experience in cyber security policy and practice, application of cyber security policies to both systems and spaces, and performing physical security assessments in support of cyber security requirements (i.e., Traditional Security STIG). Must have demonstrated experience developing, reviewing, testing, assessing, and implementing security controls for systems and spaces. Must have experience monitoring and measuring cyber security policies, processes, and controls, performing impact analysis, and developing required documentation in accordance with RMF. Additional experience in System Administration is preferred but not required.
• The selected applicant must have DoD 8570/5239 IAM Level I or higher Certification (Security + CE, CISSP, CASP) and the ability to work independently and as part of a team in various environments. 
• Security Clearance: An active DoD Secret clearance is required. Applicant selected may be subject to a security investigation and must meet eligibility requirements for access to classified information.
• Travel will be required for this position. The applicant must possess a current passport or be able to acquire one within 90 days of position start.

Benefits

At RMC, we're committed to your career growth! RMC differentiates itself from other firms through its investment in our employees. We invest our resources to train, certify, educate, and build our employees. RMC can offer you a great place to work with a small company feel and give you the experience and certifications that will take your career to the next level. RMC also offers high-quality, low-deductible healthcare plans and a competitive 401K package.