Sumaria Systems, Inc. PROP - IA ANALYST (A&A) in Rome, New York
PROP - IA ANALYST (A&A)
Department: Information Technology Division
Office: Rome NY/AFRL
Location: Rome , NY
START YOUR APPLICATION
CONTINGENT ON CONTRACT AWARD
Job Title: IA ANALYST (A&A)
Job Description: Provides Risk Management Framework (RMF) (Certification and Accreditation (C&A)) (T&M): Deliver assistance and guidance for obtaining RMF authorizations. Maintain compliance IAW with all DOD/AF/AFRL RMF requirements for authorization.
Establish processes and procedures for implementation of a local RMF program that serves as the interface and liaisons with the appropriate Authorizing Official (AO) or AO Designated Representative (AODR) for each system. Recommend improvements to and document existing processes and procedures for C&A program migration to RMF. Execute the RMF program IAW DOD, Air Force and AFRL policies. Tailor RMF guidebooks, process and procedures for each respective AO. Execute the RMF program for all operational networks under the primary responsibility of AFRL/RIOS. Implement appropriate security controls and configurations. Document and provide artifacts in order to obtain an Approval to Operate (ATO). Review and update authorization package as required by the AO. Provide guidance on and assist with the RMF process for customers and the user base seeking to obtain approval for their respective systems. Categorize information systems to determine their protection level, applicable security controls, inheritable controls, and other security requirements for information and data protection.
Create and staff authorization packages using DOD and AF provided applications and tools. Notify the ISSM of changes to the approval status of any operational networks under the primary responsibility of AFRL/RIOS. Report any systems discovered operating without approval (e.g. IATT, IATO, ATO, etc.). Comply with DOD, AF, AFMC, and AFRL guidelines and timelines. Platform Information Technology System (PITS) Support (T&M): Provide PITS support for both hardware and software, which is physically part of, dedicated to, or essential in real time to the mission performance of special purpose systems. AFRL/RI utilizes several such systems including, but not limited to, the Johnson Controls Metasys system and Integrated Base Defense Security System (IBDSS).
Qualifications: Review and conduct technical security assessments of PITS in site computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommending mitigation strategies to the system owner and Authorizing Official. Validate and verify system security requirements and establish system security designs for controls. Identify and implement appropriate information security controls and potential security functionality to ensure uniform application of security policy and enterprise solutions. Assess and mitigate system security threats/risks throughout the program life cycle. Provide security planning, assessment, risk analysis, risk management, and awareness activities for system and networking operations. Scan PITS designated systems and assist in remediating vulnerabilities. Apply STIGs to all PITS designated systems. Develop and maintain System Security Plans, Security Compliance Traceability Matrix, Security Test Plans, and Plan of Action & Milestones. Provide full-spectrum PITS support to the organization and customers. Provide full compliance with all RMF requirements and IAW AF and AFRL guidelines. Provide timely communication with customers and staff (updates, training, feedback, troubleshooting). Provides support in all areas of project requirements.
Certifications Required: Security+, Window/Linus Server/CISSP
Education: Bachelor-s degree, Education requirement may be waived for exceptionally qualified personnel.
Year-s Experience: 3 - 6 years of experience
Security Clearance Required: must have an ACTIVE Secret Security Clearance
Position Type: Full Time
Work Location: Rome Research Site, Rome NY
Top salaries paid for qualified candidates.
For more information on Sumaria Systems, please visit our website at www.sumariasystems.com
Sumaria is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, or Vietnam era, or other eligible veteran status, or any other protected factor.
Sumaria Systems, Inc. (Sumaria) is a market leader in Professional Services, Engineering, and Information Technology has been a trusted partner to U. S. Department of Defense communities for more than 30 years. With expertise to lead, insight to deliver and commitment to succeed; we staff each mission with a carefully selected team of seasoned professionals. Headquartered in Danvers, MA, with operating locations in Alabama, Colorado, Georgia, Illinois, Ohio, Oklahoma, Utah, and Virginia