As an ATO Cyber Security Analyst (System Steward) on our team, you’ll use your experience to work with the Veterans Affairs (VA) to discover and mitigate their cybersecurity risks, understand and apply policies to address requests for information on cyber best practices, conduct risk assessments for specialized devices, support ATO activities for RMF steps 0-6, and provide information system security expertise to ensure the appropriate operational security posture is maintained for information systems.
You will perform very detail-oriented system documentation and updates and collaborate closely with system owners and ISSOs to execute ATO support duties.
You’ll work with your client to translate security concepts into actionable implementable solution recommendations to help the client make informed security decisions. This is your opportunity to act as an information security subject matter expert while broadening your skills in cybersecurity.
Must Have:
· Experience with managing complex system records in the Enterprise Mission Assurance Support Service (eMASS) tool.
· Experience with supporting system Authority to Operate (ATO) processes and creating artifacts, control implementation details, and POAMs
· Experience with Information Security Continuous Monitoring (ISCM), RMF automation, and Comply to Connect
· Experience with National Institute of Standards and Technology (NIST) security controls, the Governance, Risk Management, and Compliance (GRC) security documentation tool, Risk Management Framework (RMF), and security compliance processes
· Experience with Federal Information Security Management Act (FISMA) and Federal Information System Controls Audit Manual (FISCAM) criteria
· Ability to facilitate meetings, analyze authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with system team stakeholders
· Masters degree in CS, EE, Engineering, or Technology and 5 years experience or 15 years of experience in lieu of education
Nice to have:
· Experience working with the VA
· Ability to engage with varying degrees of staff/leadership
· Possession of excellent oral and written communication skills
Job Type: Full-time
Pay: $115,000.00 - $120,000.00 per year
Benefits:
Experience level:
Schedule:
- Day shift
- On call
- Weekends as needed
Application Question(s):
- Need Masters degree with only Computers, IT, Cyber Security or Engineering or else do you have 15+ years of experience with Cyber Security in lieu of a degree?
Education:
Experience:
- ATO (Authority to Operate): 10 years (Required)
- NIST standards: 8 years (Preferred)
- e-MASS: 10 years (Required)
- POA&M: 10 years (Preferred)
- RMF: 8 years (Required)
- FISMA: 8 years (Required)
License/Certification:
- CISM (Preferred)
- CCSK (Preferred)
Work Location: Remote