Empower AI Inc.
Cybersecurity Validator
Empower AI Inc., San Antonio, Texas, United States, 78208
OverviewEmpower AI is AI for government. Empower AI gives federal agency leaders the tools to elevate the potential of their workforce with a direct path for meaningful transformation. Headquartered in Reston, Va., Empower AI leverages three decades of experience solving complex challenges in Health, Defense, and Civilian missions. Our proven Empower AI Platform® provides a practical, sustainable path for clients to achieve transformation that is true to who they are, what they do, how they work, with the resources they have. The result is a government workforce that is exponentially more creative and productive. For more information, visit www.Empower.ai.
Empower AI is proud to be recognized as a 2024 Military Friendly Employer by Viqtory, the publisher of G.I. Jobs. This designation reflects the company’s commitment to hiring and supporting active-duty and veteran employees.
ResponsibilitiesAs a
Cybersecurity Validator , you will assist the Cybersecurity SCA-V Program Lead and SCA-V Team Leads in providing Security Control Assessor-Validator (SCA-V) support services to the 7th Signal Command-Theater located at Joint Base San Antonio, TX (106th Signal Brigade). This support includes Risk Management Framework (RMF) validation testing (also referred to under the RMF as “assessment”) support to the Security Control Assessor (SCA). This includes supporting the Government in conducting validation preparation activities such as onsite staff assistance visits (SAVs) and other validation activities, and generating RMF scorecards. You will also provide annual assessments for installations in accordance to Federal Information Security Modernization Act (FISMA) standards and requirements.
In assuming this position, you will be a critical contributor to meeting Empower AI's mission: To deliver innovative, cost-effective solutions and services that enable our customers to rapidly adapt to dynamic environments.
This position is located at Joint Base San Antonio, TX. 2 days a week telework allowed. Requires 25% travel.
Communicated with the Cybersecurity SCA-V Program Lead on any issues or concerns throughout the assessments
Assesses DoD Information Systems against the RMF security controls (IAW) Department of Defense (DoD) Instructions 8500.01 and 8510.01, NIST SP 800-37, 800-53, and 800-53A, Army Regulation 25-1 and 25‐2, US Army Best Business Practices (BBPs) and applicable NETCOM Tactics, Techniques & Procedures (TTPs).
Effectively performs interviews of technical Subject Matter Experts (SMEs) as well as non-technical management personnel to ascertain the security posture of an IT system
Identifies mitigating factors for identified risks and proposes additional mitigation strategies for identified vulnerabilities
Evaluates a wide array of IT devices for Security Technical Implementation Guide (STIG) compliance using ACAS/ Nessus, SCAP Compliance Checker, and manual checklist reviews.
This includes Windows, Solaris, and Red Hat Linux servers and desktops, routers, switches, firewalls, IDS, etc.
Submit findings input into the Enterprise Mission Assurance Support Services (eMASS) system or other Army approved tracking database
QualificationsRequirements :
Bachelor's degree in Computer Science, Information Technology, or a similar field with at least seven (7) years of related experience in the fields of security engineering, cyber security, or information assurance
At least one (1) year of Cybersecurity validations, assessment, and/or audits
Current Information Assurance (IA) certification (required at performance start date): DoD 8570 IAM Level II (e.g. CAP, GSLC)
and
IAT-II (e.g. CompTIA Security+)
Current Computing Environment (CE) certification (required at performance start date): MCITP, MCSE, MCP, CCNA-Security CEH, etc
Clearance (required at performance start date): active SECRET clearance with valid Tier 5 Background Investigation
Willingness and ability to travel up to 25%, depending on site validation schedule.
Experience with eMASS and a strong understanding of the CNSSI 1253 CCIs
Experience with Security Content Default Protocols (SCAP) Compliance Checker (SCC), NESSUS (ACAS), Information Assurance Vulnerability Management (IAVM) scanners (that is, tools utilized to meet DoD Security Configuration Compliance Validation
About Empower AIIt is the policy of Empower AI to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, gender identity, or any other protected class or category as may be defined by federal, state, or local laws or regulations. In addition, we affirm that all compensation, benefits, company-sponsored training, educational assistance, social, and recreational programs are administered without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, or gender identity. It is our firm intent to support equal employment opportunity and affirmative action in keeping with applicable federal, state, and local laws and regulations. Empower AI is a VEVRAA Federal Contractor.
Empower AI is proud to be recognized as a 2024 Military Friendly Employer by Viqtory, the publisher of G.I. Jobs. This designation reflects the company’s commitment to hiring and supporting active-duty and veteran employees.
ResponsibilitiesAs a
Cybersecurity Validator , you will assist the Cybersecurity SCA-V Program Lead and SCA-V Team Leads in providing Security Control Assessor-Validator (SCA-V) support services to the 7th Signal Command-Theater located at Joint Base San Antonio, TX (106th Signal Brigade). This support includes Risk Management Framework (RMF) validation testing (also referred to under the RMF as “assessment”) support to the Security Control Assessor (SCA). This includes supporting the Government in conducting validation preparation activities such as onsite staff assistance visits (SAVs) and other validation activities, and generating RMF scorecards. You will also provide annual assessments for installations in accordance to Federal Information Security Modernization Act (FISMA) standards and requirements.
In assuming this position, you will be a critical contributor to meeting Empower AI's mission: To deliver innovative, cost-effective solutions and services that enable our customers to rapidly adapt to dynamic environments.
This position is located at Joint Base San Antonio, TX. 2 days a week telework allowed. Requires 25% travel.
Communicated with the Cybersecurity SCA-V Program Lead on any issues or concerns throughout the assessments
Assesses DoD Information Systems against the RMF security controls (IAW) Department of Defense (DoD) Instructions 8500.01 and 8510.01, NIST SP 800-37, 800-53, and 800-53A, Army Regulation 25-1 and 25‐2, US Army Best Business Practices (BBPs) and applicable NETCOM Tactics, Techniques & Procedures (TTPs).
Effectively performs interviews of technical Subject Matter Experts (SMEs) as well as non-technical management personnel to ascertain the security posture of an IT system
Identifies mitigating factors for identified risks and proposes additional mitigation strategies for identified vulnerabilities
Evaluates a wide array of IT devices for Security Technical Implementation Guide (STIG) compliance using ACAS/ Nessus, SCAP Compliance Checker, and manual checklist reviews.
This includes Windows, Solaris, and Red Hat Linux servers and desktops, routers, switches, firewalls, IDS, etc.
Submit findings input into the Enterprise Mission Assurance Support Services (eMASS) system or other Army approved tracking database
QualificationsRequirements :
Bachelor's degree in Computer Science, Information Technology, or a similar field with at least seven (7) years of related experience in the fields of security engineering, cyber security, or information assurance
At least one (1) year of Cybersecurity validations, assessment, and/or audits
Current Information Assurance (IA) certification (required at performance start date): DoD 8570 IAM Level II (e.g. CAP, GSLC)
and
IAT-II (e.g. CompTIA Security+)
Current Computing Environment (CE) certification (required at performance start date): MCITP, MCSE, MCP, CCNA-Security CEH, etc
Clearance (required at performance start date): active SECRET clearance with valid Tier 5 Background Investigation
Willingness and ability to travel up to 25%, depending on site validation schedule.
Experience with eMASS and a strong understanding of the CNSSI 1253 CCIs
Experience with Security Content Default Protocols (SCAP) Compliance Checker (SCC), NESSUS (ACAS), Information Assurance Vulnerability Management (IAVM) scanners (that is, tools utilized to meet DoD Security Configuration Compliance Validation
About Empower AIIt is the policy of Empower AI to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, gender identity, or any other protected class or category as may be defined by federal, state, or local laws or regulations. In addition, we affirm that all compensation, benefits, company-sponsored training, educational assistance, social, and recreational programs are administered without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, or gender identity. It is our firm intent to support equal employment opportunity and affirmative action in keeping with applicable federal, state, and local laws and regulations. Empower AI is a VEVRAA Federal Contractor.