Note: Position requires local residence in the Norfolk, VA Area to be on-site.

Job Summary

VSolvit is seeking a Cybersecurity Support Specialist (RMF) to support the Department of Navy's

Commander, Operational Test and Evaluation Force (COMOPTEVFOR). The Cybersecurity Support Specialist will assist the Information Systems Security Manager (ISSM) in the development, review, endorsement and maintenance of cyber security certifications and accreditations. A Secret Clearance is required to start work in this position.

As with any position, additional expectations exist. Some of these are, but are not limited to, adhering to normal working hours, meeting deadlines, following company policies as outlined by the Employee Handbook, communicating regularly with assigned supervisors, and staying focused on the assigned tasks.

Responsibilities

• Act as the Information System Security Engineer (ISSE) by providing technical support for the Risk Management Framework (RMF) Assessment and Authorization (A&A) process.
• Establish RMF Security Plan in eMASS.
• Ensure proper Architecture, Boundary, and Dataflow diagrams are completed for systems

being authorized.

• Inventory and documentation of hardware/software/firmware within assessment boundary.
• Develop Continuous Monitoring Strategy.
• Completion of eMASS Implementation Plan based on Continuous Monitoring Strategy.
• Ensure 100% execution of the approved Security Assessment Plan.
• Ensure ACAS automated vulnerability scans are completed on all assets with-in assessment boundary and establish hardened baseline configuration with consistent, repeatable successful results.
• Ensure system(s) are DISA STIG compliant - through SCAP scripts and manual checks.
• Maintain the RMF POA&M to accurately portray the risk posture of assigned solutions.
• Detail all relevant mitigation and remediation activities to vulnerabilities noted on the RMF POA&M through the Change Management Process.
• Ensure all RMF documentation is updated based on change and vulnerability
• Management efforts.
• Perform continuous security reviews of RMF Security Controls (per approved continuous monitoring strategy).
• Support the development of the Plan of Action and Milestones (POA&M) and the development and update of the Security Authorization Package (SAP).
• Assemble all required documentation as outlined by the ISSM for the RMF packages.
• Assess security controls, Security Technical Implementation Guides (STIGs), and Assured Compliance Assessment Solution (ACAS) scans in accordance with governing policies for servers, networking equipment, workstations, etc.
• Process, maintain compliance, and verify completion of ACAS, STIG, and SCAP files, report any open findings or vulnerabilities to the program, propose and implement mitigations as required and construct necessary POA&M when required.
• Monitor cyber security compliance for all OPTEVFOR systems using tools to include but not limited to the Enterprise Mission Assurance Support Service (eMASS), Vulnerability
• Remediation Asset Manager (VRAM), and Assured Compliance Assessment Solution (ACAS).
• Administer the ACAS server and vulnerability scans.
• Apply security updates to the ACAS server application and Linux operating system as required.
• Assist the ISSM in the development or modification of any policies, plans, and documentation required for the accreditation of all OPTEVFOR systems.
• Administer and monitor Host Based Security System (HBSS) servers to maintain optimum operating status and install required server and client updates to HBSS components within mandated time-lines.
• Make approved policy changes to HBSS configuration when required.
• Provide a weekly status report which contains the progress of work on assigned tasks and future work plans for the upcoming week.
• Other duties as assigned.

Basic Qualifications

• Must have the proper and current cyber security qualifications to perform IT privileged administrative functions in accordance with the DoD Cyberspace Workforce Framework (DCWF) and the DoDM 8140.03, CYBERSPACE WORKFORCE QUALIFICATION AND MANAGEMENT PROGRAM.
• The Contractor shall meet the applicable DCWF Work Role [722] Foundation Qualifications, Intermediate which include:
• Education: Associate degree or higher from an accredited college or university. When used to satisfy the foundational portion of qualification, the degree must be conferred within the past 5 years by an institution of higher education that is accredited by a nationally-recognized accreditor, unless continuous work in the relevant discipline can be demonstrated; OR
• Training: Offerings listed in DoD 8140 Training Repository (); OR
• Personnel Certification: (ISC)2 CERTIFIED AUTHORIZIATION PROFESSIONAL or COMPTIA ADVANCED SECURITY PRACTITIONER or EC-Council Certified Chief Information Security Officer (CCISO) or (ISC)2 CERTIFIED CLOUD SECURITY PROFESSIONAL (CCSP) or ISACA Certified Information Security Manager (CISM) or (ISC)2 Certified Information Systems Security Professional (CISSP) or CompTIA Cloud+ or (ISC)2 SYSTEMS SECURITY CERTIFIED PRACTITIONER (SSCP).
• Excellent written and oral communication skills.
• Active Secret security clearance.

Other Job Info

hear.

reach with hands and arms.

• The employee is occasionally required to stand; climb or balance and stoop, kneel, crouch, or crawl.
• The employee must occasionally lift and/or move up to 25 pounds.
• Specific vision abilities required by this job include close vision.
• The employee will normally work in a temperature-controlled office environment, with frequent exposure to electronic office equipment.
• During visits to areas of operations, may be exposed to extreme cold or hot weather conditions and occasionally exposed to fumes or airborne particles, toxic or caustic chemicals, and loud noise.

Company Summary

Join the VSolvit Team! Founded in 2006, VSolvit (pronounced 'We Solve It') is a technology services provider that specializes in cybersecurity, cloud computing, geographic information systems (GIS), business intelligence (BI) systems, data warehousing, engineering services, and custom database and application development. VSolvit is an award winning WOSB, CA CDB, MBE, WBE, and CMMI Level 3 certified company. We offer a customizable health benefits program that best meets the needs of its employees. Offering may include: medical, dental, and vision insurance, life insurance, long and short-term disability and other insurance products, Health Savings Account, Flexible Spending Account, 401K Retirement Plan options, Tuition Reimbursement, and assorted voluntary benefits. Our goal is to grow together and enjoy the work that we do as a team.

VSolvit LLC is an Equal Opportunity/Affirmative Action employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status.