Information Assurance

Information Assurance Required Skills: DoD 8570.01-M IAT Level II compliant (see https://iase.disa.mil/iawip/Pages/iabaseline.aspx) Active Secret clearance, ability to gain interim Secret clearance, or holds a successfully completed NACI investigation Experience with USAF Enterprise Mission Assurance Support Service (eMASS) system Minimum 6 years of experience working in the Information Assurance (IA) or cybersecurity arena (IAM1) Minimum 8 years of experience working in the Information Assurance (IA) or cybersecurity arena (IAM2) 2 years of experience working with DIACAP Knowledge and experience with coordination and processing of tasks related to C&A Ability to provide support and reporting requirements to clients and IA support staff as necessary Preferred Skills: 2 or 4-year degree 2 years of experience working with RMF for DoD Current CAP, CASP, CISM or other DoD 8570.01-M IAM Level II certification Position Description: Position is in Information Assurance (IA). Certification and Accreditation (C&A) Practitioners are responsible for the implementation and operation of a DoD Information System (IS) or system DoD Components to ensure they are functional and secure within the organization's Computing Environment (CE). Candidates must be familiar with the DIACAP and RMF for DoD processes and use of federal (i.e. DoD, NIST) and organization specific published documents to manage system(s) operation and sustainment. Candidates will assess and identify system related security requirements for developing C&A artifacts and supporting documentation to meet system IA reporting requirements. They will ensure IA security inspections, Security Tests and Evaluation (ST&E) tests, and C&A artifact reviews are conducted, coordinated, and documented in preparation for validation of security controls by SCA-R/DAA. They will conduct POA&M reviews and ensure milestones are met. They will conduct IS risk impact assessment(s) of upcoming software releases. They will review and interpret vulnerabilities on Security Readiness/Review (SRR), Security Content Automation Protocol (SCAP), Retina, and Web Application Fortify scans, coordinate mitigation strategies with respective team members, and provide other C&A and cybersecurity support to meet RMF for DoD requirements as needed.