ICI Services
Navy Qualified Validator Level II
ICI Services, Phila, Pennsylvania, United States, 19117
ICI Services is looking for a motivated individual who wants to provide leadership and Cybersecurity and Information Assurance (IA) expertise to a major Naval Sea Systems Command (NAVSEA) Program activity in
Philadelphia, PA . We are an Employee-Owned Company providing Engineering & Integration, Systems Acquisition, Information Warfare, and In-Service Sustainment to government customers. We need a
Navy Qualified Validator
ready to join a fast-paced and exciting work environment .
Security Clearance:
Applicant must hold an active Department of Defense (DoD) SECRET personnel security clearanceResponsibilities:
Work as a Navy Qualified Validator and perform Risk Management Framework (RMF) functions, Assessment and Authorization (A&A) activities and other related tasks. This may include developing Security Assessment Report (SAP), Security Assessment Report (SAR) Executive Summary, and supporting teams to assess security controls, identify weaknesses, and track remediation activities in Plan of Action and Milestones (POA&Ms).Manage the review of Assessment and Authorization (A&A) documentation, provide feedback on completeness and compliance of its contentAdvise system owners on all matters, technical and otherwise, involving the security of assigned DoD IT systems and Information systemsWork with technical teams to mitigate security control deficiencies for assigned DoD IT systems and Information Systems.Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. This may include reviewing or performing ACAS Scans, STIGs testing and conduct site visits.Support the RMF continuous monitoring program.Ability to develop meeting minutes and presentations, lead team meetings, and represent senior government staff in their absenceAbility to work with senior leadership and support technical cyber working group conferences, and perform technical researchExperience Requirements
7-10 years of experience in managing IT systems and IT systems support for Navy/DoD customers or directly for Navy/DODExperience supporting team/cross-functional teams requiredExperience and/or familiarity with applicable NIST Publications such as NIST SP 800-37 RMF, NIST SP-53, Secure Technical Implementation Guides (STIGs), Information Assurance Vulnerability Alert (IAVA), DCID 6/3, Federal Information Security Management Act (FISMA) and other tools using industry best practices.Experience with ACAS, HBSS, E-Mass, eMASSTER and other automated tools to support compliance and verification activities.Possess strong oral and written communication skillsSolid M/S Office product skills (WORD, PPT, EXCEL)Experience and/or familiarity with network protection devices such as Firewalls, Intrusion Detection and Prevention systems (IDS/IPS), Log Analysis, Malware Analysis, Network Traffic Flow and Packet Analysis.Experience with Navy-Marine Corps Intranet (NMCI), DITRP-DON, and DADMS is highly desiredNAVSEA PEO experience is highly desiredEducational/Certification Requirements:
Bachelor level degree (BA/BS) in a technical field highly desiredNavy Qualified Validator Level II or III certification requiredCertification in IAM Level III OR DoD 8570.1-M Compliance at IAT Level I OR equivalency (e.g., Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM)) certification required
EOE/M/F/ Disability/Vet
VEVRAA Federal Contractor
Philadelphia, PA . We are an Employee-Owned Company providing Engineering & Integration, Systems Acquisition, Information Warfare, and In-Service Sustainment to government customers. We need a
Navy Qualified Validator
ready to join a fast-paced and exciting work environment .
Security Clearance:
Applicant must hold an active Department of Defense (DoD) SECRET personnel security clearanceResponsibilities:
Work as a Navy Qualified Validator and perform Risk Management Framework (RMF) functions, Assessment and Authorization (A&A) activities and other related tasks. This may include developing Security Assessment Report (SAP), Security Assessment Report (SAR) Executive Summary, and supporting teams to assess security controls, identify weaknesses, and track remediation activities in Plan of Action and Milestones (POA&Ms).Manage the review of Assessment and Authorization (A&A) documentation, provide feedback on completeness and compliance of its contentAdvise system owners on all matters, technical and otherwise, involving the security of assigned DoD IT systems and Information systemsWork with technical teams to mitigate security control deficiencies for assigned DoD IT systems and Information Systems.Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. This may include reviewing or performing ACAS Scans, STIGs testing and conduct site visits.Support the RMF continuous monitoring program.Ability to develop meeting minutes and presentations, lead team meetings, and represent senior government staff in their absenceAbility to work with senior leadership and support technical cyber working group conferences, and perform technical researchExperience Requirements
7-10 years of experience in managing IT systems and IT systems support for Navy/DoD customers or directly for Navy/DODExperience supporting team/cross-functional teams requiredExperience and/or familiarity with applicable NIST Publications such as NIST SP 800-37 RMF, NIST SP-53, Secure Technical Implementation Guides (STIGs), Information Assurance Vulnerability Alert (IAVA), DCID 6/3, Federal Information Security Management Act (FISMA) and other tools using industry best practices.Experience with ACAS, HBSS, E-Mass, eMASSTER and other automated tools to support compliance and verification activities.Possess strong oral and written communication skillsSolid M/S Office product skills (WORD, PPT, EXCEL)Experience and/or familiarity with network protection devices such as Firewalls, Intrusion Detection and Prevention systems (IDS/IPS), Log Analysis, Malware Analysis, Network Traffic Flow and Packet Analysis.Experience with Navy-Marine Corps Intranet (NMCI), DITRP-DON, and DADMS is highly desiredNAVSEA PEO experience is highly desiredEducational/Certification Requirements:
Bachelor level degree (BA/BS) in a technical field highly desiredNavy Qualified Validator Level II or III certification requiredCertification in IAM Level III OR DoD 8570.1-M Compliance at IAT Level I OR equivalency (e.g., Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM)) certification required
EOE/M/F/ Disability/Vet
VEVRAA Federal Contractor