RB Consulting Inc
Cybersecurity Specialist 49-05-8013
RB Consulting Inc, Frederick, Maryland, United States, 21701
Cybersecurity Specialist 49-05-8013
Fort Detrick, MarylandRB Consulting, Inc. ("RBCI") is a Service-Disabled Veteran-Owned Small Business (SDVOSB) providing information technology (IT) services and professional services to commercial businesses, the Department of Defense (DoD), and other federal agencies.
RBCI is seeking Cybersecurity Specialists to support the Integrated Clinical System PMO's mission to develop, manage and perform end to end life cycle logistics on medical equipment to protect and sustain the Warfighter's and their families for the Nation. The Cybersecurity Specialist will work directly with DoD and vendors running tests and evaluations on their medical equipment operating systems that will be sitting on the DoD network validating that the systems meet the DoD Risk Management Framework (RMF) requirements to ensure the system is not vulnerable to inside and outside threats. This position is hybrid and supports the Fort Detrick, MD location (Contractor office within 10 miles of Fort Detrick).
Duties & Responsibilities
This position is responsible for working with RBCI's team supporting our DoD customer to ensure the appropriate administrative, physical and technical information security safeguards are implemented across a portfolio of deployed military medical devices.
Conduct information security assessments and testing to ensure the proper implementation of security controls across the environment, including populating defined security/risk assessments, identifying gaps and compensating controls, identifying remediation plans, and publishing management reports of results.
Conduct evaluations of technical and non-technical security safeguards to demonstrate and document compliance with the DoD's Risk Management Framework (RMF) requirements for security and interoperability.
Perform information security risk assessments as part of the project lifecycle to ensure that new medical device technology conforms to security standards against internal and external threats.
Perform Independent verification and validation (IV&V) testing, including documentation of Plan of Action and Milestones (POAM) data within the DoD system.
Produce information security risk assessment reports that identify gaps with DoD Security Policies & Standards and propose remediation plans.
Assist in conducting information system activity reviews and participate in Risk Management Framework (RMF) testing exercises and activities.
Qualifications
Bachelor's degree in a related discipline or a minimum of four (4) years of experience.
Must be a U.S. citizen with a current Public Trust Clearance; Desired: Secret Clearance.
Working knowledge internal controls & IT Risk Assessment and Mitigation procedures.
Technical experience in security-related technologies such as encryption, remote access, anti-virus systems, etc.
A basic knowledge of the 8 domains of the Common Body of Knowledge for information security:
Security & Risk Management
Asset Security
Security Engineering
Communications and Network Security
Identity and Access Management
Security Assessment and Testing
Security Operations
Software Development Security
Desired: Experience with medical devices or a working knowledge of security frameworks such as HIPAA, HITRUST, NIST, ISO or other industry standards relevant to the DoD medical enterprise.
Notes
This job description does not state or imply that these are the only duties to be performed by the employee(s) in this position. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments.
RBCI is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
#J-18808-Ljbffr
Fort Detrick, MarylandRB Consulting, Inc. ("RBCI") is a Service-Disabled Veteran-Owned Small Business (SDVOSB) providing information technology (IT) services and professional services to commercial businesses, the Department of Defense (DoD), and other federal agencies.
RBCI is seeking Cybersecurity Specialists to support the Integrated Clinical System PMO's mission to develop, manage and perform end to end life cycle logistics on medical equipment to protect and sustain the Warfighter's and their families for the Nation. The Cybersecurity Specialist will work directly with DoD and vendors running tests and evaluations on their medical equipment operating systems that will be sitting on the DoD network validating that the systems meet the DoD Risk Management Framework (RMF) requirements to ensure the system is not vulnerable to inside and outside threats. This position is hybrid and supports the Fort Detrick, MD location (Contractor office within 10 miles of Fort Detrick).
Duties & Responsibilities
This position is responsible for working with RBCI's team supporting our DoD customer to ensure the appropriate administrative, physical and technical information security safeguards are implemented across a portfolio of deployed military medical devices.
Conduct information security assessments and testing to ensure the proper implementation of security controls across the environment, including populating defined security/risk assessments, identifying gaps and compensating controls, identifying remediation plans, and publishing management reports of results.
Conduct evaluations of technical and non-technical security safeguards to demonstrate and document compliance with the DoD's Risk Management Framework (RMF) requirements for security and interoperability.
Perform information security risk assessments as part of the project lifecycle to ensure that new medical device technology conforms to security standards against internal and external threats.
Perform Independent verification and validation (IV&V) testing, including documentation of Plan of Action and Milestones (POAM) data within the DoD system.
Produce information security risk assessment reports that identify gaps with DoD Security Policies & Standards and propose remediation plans.
Assist in conducting information system activity reviews and participate in Risk Management Framework (RMF) testing exercises and activities.
Qualifications
Bachelor's degree in a related discipline or a minimum of four (4) years of experience.
Must be a U.S. citizen with a current Public Trust Clearance; Desired: Secret Clearance.
Working knowledge internal controls & IT Risk Assessment and Mitigation procedures.
Technical experience in security-related technologies such as encryption, remote access, anti-virus systems, etc.
A basic knowledge of the 8 domains of the Common Body of Knowledge for information security:
Security & Risk Management
Asset Security
Security Engineering
Communications and Network Security
Identity and Access Management
Security Assessment and Testing
Security Operations
Software Development Security
Desired: Experience with medical devices or a working knowledge of security frameworks such as HIPAA, HITRUST, NIST, ISO or other industry standards relevant to the DoD medical enterprise.
Notes
This job description does not state or imply that these are the only duties to be performed by the employee(s) in this position. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments.
RBCI is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
#J-18808-Ljbffr