The RMF Cybersecurity Specialist, supports the risk management framework (RMF) program. Provides technical support related to the U.S. Marine Corps Logistics Command (MARCORLOGCOM). This position applies expertise in assessing information system compliance with RMF standards and reviewing, verifying, and validating required RMF documentation and artifacts in accordance with MARCORLOGCOM.
ESSENTIAL DUTIES AND RESPONSIBILITIES
Essential duties and responsibilities include the following. Other duties may be assigned.
Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge / quality of work, supporting financial goals of the company, initiative / motivation, cooperation / relationships, problem analysis / discretion, accomplishing goals through organization, positive oral / written communication skills, leadership abilities, commitment to Affirmative Action, reliability / dependability, flexibility and ownership / accountability of actions taken.
Provides reportable metrics for information systems, annual Security Control Testing, annual Security Review, and annual Contingency Plan Testing in order to meet the Federal Information System Management Act (FISMA) reporting requirements.
Provides RMF validation support. Completes validation of a package within a 30-45 day window from the day received. Provides auditing and consultation services as assigned.
Provides independent verification and validation of Marine Corps system’s security controls and safeguards designed through the security engineering process.
Validates applicable cybersecurity controls for an assigned Marine Corps system, including developing the appropriate test procedures if necessary, executing the test procedures and accurately documenting the results of security testing.
Performs all validation steps comparing actual with expected results, and analyzes the differences for impact and risk. Documents results in a government provided repository.
Performs Common Vulnerability Scoring System (CVSS) tasks, develops the Security Assessment Report (SAR) and other validation support requirements as required by DoD and USMC policies and guidance for the assigned system(s).
Develops and reports metrics that include the percentages of completion in every step of the validation process.
Maintains information security on behalf of the Information System Security Manager (ISSM).
Leads categorization of Information Systems (IS) based on the impact due to a loss
of confidentiality, integrity, and availability of the information or Information System (IS).
Selects the security control baseline applicable to the IS based upon the results of the Categorization. Tailors controls as needed by supplementing or modifying to effectively manage risk for any unique system conditions.
Implements security controls for the IS and conducts an initial assessment to facilitate early identification of weaknesses and deficiencies.
Provides documentation of the security controls implementation.
Performs Marine Core Compliance and Authorization Support Tool (MCCAST) updates. Assists with writing and updating supporting artifacts, security control updates and testing. Updates Plans of Action and Milestones, updates accreditation packages, and coordinates with the Information System Owner and/or Program Manager to mitigate caveats and conditions for existing networks systems.
Assists with the preparation and review of Federal Information Security Management Act (FISMA) documentation.
Develops a System Security Plan (SSP) that addresses objectives for the assessment, methods for verifying security control compliance, the schedule for the initial control assessment, and actual assessment procedures.
Works with ISSM and leads Government RMF ISSO in conducting the initial assessment of the effectiveness of security controls and documents the issues, findings, and recommendations in a Security Assessment Report (SAR).
Develops a Plan of Action and Milestones (POA&M) for the RMF package that addresses all un- remediated vulnerabilities, failed Security Technical Implementation Guideline (STIG) failures and failed security controls.
Ensures POA&M includes all elements required by MCCAST and are updated monthly throughout the life cycle of the IS using the latest vulnerability scans and STIG checklists.
Meets with the Security Officer at least twice monthly to review and update the POA&M.
Annually assess a selected subset of security controls, documents the results and informs the ISSM/SO of the results.
Provides monthly status report updates for all Assessment and Authorization (A&A) package efforts, Federal Information Security Management Act (FISMA) reportable metrics, and non-FISMA reportable system status for all LOGCOM systems.
Provides daily monitoring and maintenance of two Assured Compliance Assessment Solution (ACAS) scanning servers.
Maintenance includes keeping the security feeds and plugins up to date. Additional duties include configuring and tuning vulnerability management scanning tools to detect the exploitation of vulnerabilities detected through continuous monitoring.
Assists in the acknowledgment and compliance tracking of Information Assurance and Vulnerability Alerts (IAVA’s) using the Operational Directive (OPDIR) system.
Leads the creation and completion of POA&M’s for non-compliant IAVA’s.
Assist with the tracking and remediation of Marine Collection Database (MCD) web assessments and USMC Task Orders (TO’s) related to cybersecurity.
Keeps the cybersecurity team informed of emerging trends and status of the overall vulnerability posture of the MARCORLOGCOM Data Center.
Initiates and creates vulnerability tracking and vulnerability assessment reports and disseminates to Cybersecurity team and Datacenter Branch team.
Uses the Remedy system to create and track IAVA tickets and view and resolve vulnerability management related tickets.
Uses Splunk to monitor server log files and notify ISSM of potential issues.
Develops metrics and reports metrics that include the vulnerability remediation percentages of all LOGCOM managed Information Systems.
Monitors the Remedy ticketing system to ensure all cybersecurity tickets are acknowledged and resolved in a timely fashion.
Ensures data, equipment and personnel security are enforced by conducting security checks and inspections.
Verifies the accuracy of and then digitally signs command system authorization requests.
Assists the ISSM in maintaining audit preparedness.
Monitors and tests changes with the IT environment that affect cybersecurity posture and ensures the appropriate operational security posture is maintained for IT.
Implements and enforce all Marine Corps cybersecurity policies, procedures, and countermeasures using applicable cybersecurity publications.
Responsible for aiding in own self-development by being available and receptive to all training made available by the company.
Plans daily activities within the guidelines of company policy, job description and supervisor’s instruction in such a way as to maximize personal output.
Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and coworkers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions to the best of own ability.
EDUCATION / EXPERIENCE
Bachelor's degree in Computer Science/Engineering or related field and a minimum of four (4) years relevant experience, or equivalent combination of education / experience. Minimum of 3 years’ of demonstrated experience performing RMF and/ or DoD information assurance certification and accreditation process (DIACAP) validation Services.
CERTIFICATES, LICENSES, REGISTRATION
Possesses or has the ability to obtain a Secret Clearance
Security certification such as CISSP, SANS GIAC, Security+, Network+, Linux+, MCSE, CCNA, DIACAP or SSCP preferred
JOB SPECIFIC KNOWLEDGE / SKILLS / ABILITIES
Experience in Department of Defense (DoD), Navy and Marine Corps systems, policies, procedures
Advanced knowledge of Business Process Reengineering requirements and deliverables
Advanced knowledge of DoD/Navy/USMC supply, warehousing, distribution and maintenance systems
Advanced knowledge of and experience with cyber threat intelligence gathering methodologies, such as hacker web sites, security/ security mailing lists, etc.
Advanced knowledge of computer and network malware analysis
Advanced knowledge performing vulnerability/risk analysis of computer systems and applications
Must have knowledge of SMAG business processes and IT Enablers
Advanced knowledge of Navy Working Capital Funds, (supply management Activity Group and Depot Maintenance Activity Group)
Ability to read, analyze, develop and interpret common information systems security documents
Expert computer skills with advanced proficiency in a Windows and Linux based computer environment
Excellent critical thinking skills with ability to identify, analyze and resolve problems / complex issues
Excellent verbal and written communications skills with ability to prepare quality reports and effectively communicate / interact with a wide variety of technical and non-technical audiences (i.e., customers, team members, management and federal staff)
Exceptional customer service skills with ability to respond to requests in a professional, helpful and timely manner
Highly organized with ability to effectively manage multiple projects and priorities
Ability to work in a fast-paced environment and to learn and apply new knowledge and techniques related to incident response and continuous monitoring capabilities
Ability to effectively work both independently and in a team environment for the successful achievement of goals
Ability to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference and volume. Ability to apply concepts of basic algebra and geometry.
Ability to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.
Ability to read, analyze and interpret common scientific and technical journals, financial reports, and legal documents. Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Ability to write speeches and articles for publication that conform to prescribed style and format. Ability to effectively present information to top management, public groups, and/or boards of directors.