Cybersecurity Risk Management SME

Role Overview

A Cybersecurity Risk Management Subject Matter Expert is responsible for supporting the Assessment and Authorization (A&A) processes in compliance with the Risk Management Framework (RMF) policy DoDI 8510.01. This role involves providing expert guidance in system risk mitigation, advising the J683, and managing authorizations within the USINDOPACOM AO's DoDIN Area of Responsibility (DAO).

What You Will Do

Notify system owners and the J683 of system authorization expirations, assess and validate Cybersecurity Controls in accordance with USINDOPACOM procedures, assist in updating systems security documentation for the Security Authorization Package (SAP), and provide completed SAP for AO-DR review.

Why It Might Be a Fit

Must have experience in the validation of Cybersecurity controls for the A&A of systems within the DoD, experience with all phases of A&A in the RMF process, and experience with automated C&A and A&A toolsets (e.g. Enterprise Mission Assurance Support Service (eMASS).

Requirements

• Minimum High School Diploma
• At least 5 years' experience with managing, developing, or preparing RMF the A&A of systems within the DoD
• IAW DoDM 8140.03, must meet the advanced personnel certification
• IAM-III Certification (CISM, CISSP or Associate, GSLC, CCISO)

Benefits

• Medical, dental, and vision coverage
• 401k matching
• Generous PTO
• Paid holidays
• Professional training opportunities
• Pet insurance