RMF Analyst Senior

Description

Introduction

Make a difference for national security by joining a team of dedicated IT professionals who will sustain, modernize and transform the enterprise IT capabilities for the Defense Counterintelligence and Security Agency (DCSA).The Air Force and Combatant Commands Business Group of SAIC is seeking RMF Analyst SME to support a transformational infrastructure program for DCSA.

SAIC is proud to be supporting DCSA in safeguarding our nation’s information. DCSA is the designated oversight authority on the accreditation of classified facilities, information systems, and the insider threat program. This involves security oversight of more than 10,000 companies and approximately 13,000 facilities involved in classified work throughout the DoD and 31 Federal agencies.

Specifically, on the DCSA One IT program, SAIC will provide an enterprise IT solution that delivers highly secured and adaptable IT infrastructure, provides customer support, and cutting-edge technologies that support operations and advance the DCSA mission under a single IT environment (i.e., One IT).

Job Description

Provides cybersecurity authorization and compliance services and subject matter expertise supporting all steps of the Risk Management Framework (RMF) process for development and sustainment efforts by the Office of the CIO (OCIO) IAW DoD and DCSA OCIO policies and procedures and RMF compliance standards.

• Develops security plans, as well as assessment reports, plans of action and milestones for remediation. Defines criticality or sensitivity of systems, performs categorization calculations, and recommends corrective action.
• Recommends baseline security controls, assesses changes in controls, and coordinates changes to security authorizations.
• Conducts evaluations to verify that design and implementation meet requirements.
• Prepares test plans and conducts security control testing IAW with NIST SP800-53.
• Implements security controls, and produces artifacts required for authorization.
• Assists with continuous monitoring and security control, risk, and vulnerability assessments, creating rules for scans and providing recommendations for implementation and mitigation/remediation.
• Provides Enterprise Mission Assurance Support Service (eMASS) package accreditation to include artifact creation, modification, and sustainment support. Captures, assesses, maintains, and reports asset information.
• Evaluates proposed new products and protocols for impact to the accreditation posture.
• Provides inputs into the Activity Report.

*** THIS IS A HYBRID SCHEDULE WITH 3 DAYS ONSITE AT QUANTICO, VA***

Qualifications

Required Qualifications

It is required that the RMF Analyst SME have the following qualifications:

• BA/BS with 5 or more years of experience in Risk Management Framework. Additional experience can be used in lieu of a degree.
• Secret Clearance.
• eMASS and/or Xacta experience is required (preferably eMASS).

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.