Cybersecurity Risk Management Framework

Position Overview

The Cybersecurity Risk Management Framework (RMF) Functional ISSO (Information Assurance Analyst) role is based at JBSA – Fort Sam Houston (San Antonio, TX). In this full-time position, you will utilize your cybersecurity expertise to ensure compliance with DoD cybersecurity requirements. You will assist the Information System Owner (ISO) in managing Authority To Operate (ATO) records using eMASS across eleven IMCOM CONUS Mission Training Complexes, while also conducting staff assistance visits and providing technical guidance on RMF processes.

Key Responsibilities

• Maintain compliance and inspect Type-ATO records in eMASS for eleven IMCOM CONUS Mission Training Complexes.
• Manage and track Authorizing Official (AO) and Program (P)-ISSM authorization decisions, taskers, and due outs, and assist in publishing orders to MTCs.
• Track AO authorization decisions for hosted and interconnected Information Systems and Program IT systems.
• Establish and track standards for Type-ATO eMASS records and RMF-related documents.
• Assist in inspecting MTC Plan of Action and Milestones (POA&M), review monthly updates, and develop RMF/security audits and inspections checklists.
• Provide guidance for eMASS record structure for the eleven IMCOM MTCs and continuously monitor eMASS and APMS records for RMF compliance.
• Report the security status of Information Systems and the effectiveness of security controls to the AO and organizational officials.
• Participate in working groups, update running estimates, and assist in maintaining RMF Team SharePoint portal cybersecurity documentation for system-level RMF 2.0 ATO/continuous monitoring.
• Standardize and maintain policies for 18 RMF families supporting MTCs’ operations and network security.
• Conduct Staff Assistance Visits (SAV) to the eleven CONUS MTCs for RMF planning, audits, and inspections (up to 25% travel as required).
• Assist the AMC P-ISSM with Security Control Assessor-Validation (SCA-V) and periodic compliance visits to ensure proper ATO implementation.
• Help develop and publish standards for training, appointment orders, and DD Form 2875 System Authorization Access Requests (SAAR) for MTC personnel.
• Track MTC cybersecurity personnel in the Army Training and Certification Tracking System (ATCTS) for compliance with DoD, DA, AMC, and IMCOM standards.
• Develop and manage a training program ensuring all cybersecurity personnel receive the necessary technical and security training as well as maintain certifications.

Required Qualifications

• DoD 8570 Information Assurance Management (IAM) Level I certification (minimum) or a Bachelor’s degree in IT or a related field coupled with DoD 8570 IAM Level II and DoD 8570 CISSP Auditor credentials.
• Eight (8) years of network architecture design and implementation experience.
• Strong understanding of communications support for US Army operations and training.
• Experience with U.S. Army simulation architectures, capabilities, regulations, and policies.
• Expertise in the DoD RMF certification and accreditation process, cybersecurity requirements, eMASS, and APMS.
• Knowledgeable in SharePoint administration.
• Active US SECRET clearance (minimum) and U.S. Citizenship.

Preferred Qualifications

• DoD 8570 Certified Information Systems Security Professional (CISSP) Auditor certification.
• Military service experience as an ISSO, ISSM, or in a related cybersecurity role.
• Familiarity with US Army training, Training Aids, Devices, Simulators, and Simulations (TADSS), and Command and Control Information Systems (C2IS).
• Experience in a Signal/Communications/Cyber unit and/or related functional areas.
• TOP SECRET clearance with Sensitive Compartmented Information (SCI) background investigation.

Benefits & Perks

• Benefits: Competitive pay based on the work performed, not previous salary.
• Benefits: Traditional benefits including medical, dental, vision, life, disability, and 401k matching.
• Benefits: Paid leave and the option to cash out leave.
• Benefits: Free access to certified financial planners, wellness and support services, and discount programs.
• Benefits: Education assistance and professional development opportunities.
• Benefits: And much more.