Risk Management Framework Cyber Sec Analyst - Military veterans preferred

Directly support the AEGIS Cyber Security Manager.  Develop and complete the Cyber security packages for AEGIS legacy and future Baselines in accordance with the 6 Step Risk Management Framework (RMF) Instructions and Guidelines.  The scope includes identifying, documenting, and analyzing all the controls including the Assessment procedures for each control.  Develop, update, and complete the various artifacts for each applicable package as required for each of the six Steps of the RMF process.   Perform Scanning, STIGS and Reporting for each RMF package per US Navy Testing Guidance, as needed.  Perform Validation of Controls and Assessment procedures in accordance with Navy Security Control Assessment (SCA) Guidelines for RMF Packages as needed.

To draft these packages, to obtain their approval, and to ensure all members of the IWS  organization are properly supporting CyberSecurity Systems engineering from now throughout the program’s lifecycle, the candidate will conduct the following supporting activities:

Support Combat System Integration and Test efforts from a CyberSecurity perspective.  

Prepare high-level program briefs, coordinate meetings, monitor schedules and coordinate across all applicable IWS Program Area Resource Managers (PARMs) to support and monitor Combat System Baseline (BL) CyberSecurity.  

Prepare and present CyberSecurity executive level briefs for flag level meetings and senior executives. 

Interface with stakeholders and parties responsible for (or those that support) CyberSecurity activities such as Engineering Configuration Control Board (ECCB) members, PEO Ships, PMS 500, Naval Surface Warfare Centers, IWS D (the PEO’s ISSM), NAVSEA 05, Combat System Port Engineers, SEA 21, PEO C4I, relevant PARMs who manage the various weapon and C4I systems being installed and PEO IWS stakeholder directorates. 

Work with the Tech Director, I&T, BL manager and the TSCE SW Manager to ensure Accreditation and Authorization (A&A) packages are completed and submitted to IWS D and that controls are developed and implemented to ensure proper CyberSecurity within the ICS.  

Draft technical and program correspondence, develop meeting agendas and records of discussion and other documents in accordance with standard formats and protocols. 

Support Combat System Software Baseline developments and integration efforts from a Cybersecurity perspective.