RMF Assesor

Huntsville, AL
Feb 10, 2017
Apr 13, 2017
Full Time
GDIT has an opportunity for a Cyber Security Engineer in the Information Technology field supporting an implementation and operation of an onsite private cloud.




Provide system support and security engineering assistance implementing network and domain level architectures, including configuring firewalls/switches/routers, DNS and AD, implementing domain level policies and GPOs, encryption, HBSS, and other components seen in an enterprise level environment. Assess and Validate DoD enterprise networks including OSs, networking devices, firewalls, HBSS, databases, domains, and closed restricted networks. Experienced in Risk Management Framework (RMF) and Army/DoD Certification and Accreditation process. Thorough understanding and expertise of the physical and logical application and implementation of DoDD 8500.2, DoDI 8510.1, and other applicable NIST 800 Publications cybersecurity/IA directives, instructions, and guidelines. Provide technical advice to program management to ensure that all IA activities are accounted for in the overall project plan and schedule. Interface with the customer to define system components and network topology in order to create test plans to evaluate system security status. Evaluate, identify and mitigate technical vulnerabilities based on STIG compliance. Design, test, create threat models, and implement secure operating systems, networks, and database products. Conduct risk assessments aiding the customer in identifying and prioritizing threats and vulnerabilities, and implementing countermeasures to achieve acceptable risk according to Army/DoD standards.


Position Requirements:

All items listed below are requirements for consideration of employment:

    All candidates must be US Citizens, with a DoD Secret Clearance.IT background and experience preferredImpeccable communication skills – written and verbal.Willingness to work flexible hours. The IT Business does not always offer standard 9AM-5PM hours – all candidates must be willing to perform our services during normal business hours or as required for project delivery. Our service desk is open 6AM to 6PM, so most of the time a standard work schedule may be expected; other hours are an exception.Work location is Huntsville, Alabama.Candidate must have a CISSP OR CISM certification


Candidate will support:

The implementation of a security configuration for all hardware and software components of the private cloud to satisfy compliance with the security controls identified in CNSSI 1253 Table D-1, Security Control Baselines.Support the use of Enterprise Mission Assurance Support Service (eMASS) system for the accomplishment of the private cloud RMF process.Prepare RMF Documentation.Security Control AssessmentAssess and provide recommendations for Plan Of Action and Milestone (POA&M) and waivers to DoD policies and directive.Conducts incident/event investigation and analysis and tests security products and systems to detect security weaknesses.Maintains awareness of cyber trends, threats, and vulnerabilities. Education Bachelor's Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.

Qualifications 15-20 years of related experience in data security administration.



    Experience supporting the DoD.Experience with the Risk Management Framework (RMF)Experience obtaining a system Authority to Operate (ATO)Knowledge of the Federal Risk and Authorization Management Program (FedRAMP)Strong English written and oral communication skills
 As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.