Lead Assess and Authorize (A&A) Analyst
Support the DoD customer’s Cybersecurity Assess & Authorize (A&A) group, ensure that all information systems are authorized by the Authorizing Official (AO) and that technologies are assessed prior to introduction into the network. Support multiple Authorizations to Operate (ATOs)/systems per DoDI 8510.01, NIST SP 800-30, and NIST SP 800-37. Oversee and support authorization efforts of approximately seven (7) packages on an annual basis. Responsibilities:
• Oversee team of A&A Analysts
• Review and assist in the development a Risk Management Framework (RMF) Executive Package for each Authorization that will include a System Security Plan, Security Assessment Report (SAR), Plans of Actions and Milestones (POA&M), Risk Assessment Report (RAR), and Authorization Decision Document. • Coordinate and oversee system registration in the Enterprise Mission Assurance Support Service (eMASS) application • Utilize the eMASS application to support and automate the RMF • Register and maintain all Agency connections into SNAP. • Provide monthly and annual SNAP registration metrics. Requirements:
• Active Secret security clearance
• At least 10 years of related experience
• DoD IAM III required certification/s (one of the following):
o CISM
o CISSP (or Associate)
o GSLC
o CCISO
Support the DoD customer’s Cybersecurity Assess & Authorize (A&A) group, ensure that all information systems are authorized by the Authorizing Official (AO) and that technologies are assessed prior to introduction into the network. Support multiple Authorizations to Operate (ATOs)/systems per DoDI 8510.01, NIST SP 800-30, and NIST SP 800-37. Oversee and support authorization efforts of approximately seven (7) packages on an annual basis. Responsibilities:
• Oversee team of A&A Analysts
• Review and assist in the development a Risk Management Framework (RMF) Executive Package for each Authorization that will include a System Security Plan, Security Assessment Report (SAR), Plans of Actions and Milestones (POA&M), Risk Assessment Report (RAR), and Authorization Decision Document. • Coordinate and oversee system registration in the Enterprise Mission Assurance Support Service (eMASS) application • Utilize the eMASS application to support and automate the RMF • Register and maintain all Agency connections into SNAP. • Provide monthly and annual SNAP registration metrics. Requirements:
• Active Secret security clearance
• At least 10 years of related experience
• DoD IAM III required certification/s (one of the following):
o CISM
o CISSP (or Associate)
o GSLC
o CCISO