Cybersecurity Project and RMF Lead IRES – SAFB – United States

at CH2M & Jacobs
Location Schriever Air Force Base, CO
Date Posted February 1, 2019
Category Default
Job Type Full-time

Description

Cyber Security Policy and RMF Manager to support IRES cybersecurity program for the MDA. Provides technical security engineering leadership to IRES discrete projects and Risk Management Framework (RMF) teams. Responsible for providing technical security engineering support for projects involving software/hardware/network systems to ensure discrete projects are cyber compliant and develop required documentation ensuring RMF controls are met. Responsible to bid all discrete project hours and ensures projects containing new software is directed to the Software Assurance (SwA) team to perform commercial off the shelf (COTs) or code reviews required to receive approval for placement on the MDA approved software list and network infrastructure. Understand infrastructure design with a focus on implementing technologies that are STIG compliant. Understand and implement cybersecurity standards and how they affect implementation of new tools like cloud technology. Support documentation development focused on Engineering Review Board technical briefings and Risk Management Framework (RMF) accreditation requirements. 
 #cjpost

Basic Requirements:  HS Diploma (or GED) with 16 years of experience or an Associate's degree with 14 years of general experience or a Bachelor's degree with 12 years of general experience; must include 8 years experience in developing information architecture or performing as a dad analyst, business intelligence analyst, or equivalent roles.  Must have one commercially recognized IT Architecture certification and DoD 8570 IAM/IAT Level III Compliance. Must have an active DoD Secret clearance. Must have experience using Remedy or similar trouble ticketing system. Must possess significant knowledge of Security Technical Implementation Guides (STIGs) in order to select system controls in order to protect sensitive and classified information. Must have experience using cybersecurity and CSSP Best practices for strategic planning and customer consultations. Must have experience with software tools such as ACAS, STIG Viewer, Enterprise Mission Assurance Support Service (eMASS), and Microsoft's suite of office tools. Must have systems administration experience with network device IOS, Firewall rule sets, RedHat, Linux, or Windows operating systems. Use his knowledge to manage, interpret, and provide direction to the project and RMF teams using NIST accreditation documentation processes. Must have experience with TEMPEST enforcement; CAC/PKI technology; Common Criteria requirements; FIPS 140-2 standards; patch management. Must have experience evaluating and reviewing security settings to enforce cybersecurity standards within the control families. Ability to manage and oversee discrete projects to ensure designs meet DoD cyber standards and document approved deviations.

 

Resumes must be submitted with application in order to be considered for the position.

 

The successful candidate will be assigned as an employee for Jacobs or one of the following teammates companies: HX5, GCS, ERC, MEIT or Aerodyne.

 

 

Desired: Knowledge of Risk Management Framework accreditation packages and DISA sponsored accreditation- tracking tools is desired. Knowledge of intrusion detection and firewall system architecture and management with the ability to review and analyze configurations and make recommendations is desired. Strong writing and project management skills necessary to oversee engineering projects and produce documentation required for certification evaluation is desired.

 

About Jacobs

Jacobs leads the global professional services sector delivering solutions for a more connected, sustainable world.

With $15.0 billion in combined revenue and a talent force more than 77,000 strong, Jacobs provides a full spectrum of services including scientific, technical, professional, construction- and program-management for business, industrial, commercial, government and infrastructure sectors.

For more information, visit web address removed>

Drop files here browse files ...