Vacancy expired!
Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career. As a member of the Security Control Assessor (SCA) team it's our mission to accurately identify the appropriate assessment requirements for the Navy risk management framework (RMF) process and analyze the overall risk of traditional Navy IT systems and provide accurate risk assessments to the Navy Authorizing Official. In addition we provide extensive RMF training to all Navy commands fleetwide. We are also an integral part of Navy RMF policy development, which shapes the Navy Assess and Authorize process. The Cybersecurity Engineer (SCA Liaison) is responsible for identifying, assessing, and managing cybersecurity capabilities and services, providing leadership, team coordination, and subject matter expertise in preparing Assessment and Authorization (A&A) packages and leverages the A&A process steps as a means for system authorization.
Work you'll do- Provide IA and RMF services such as System Security Plans (SSP), risk assessment, audit policy, scanning policy, POA&Ms, HBSS implementation.
- Reviewing authorization packages and artifacts in the Enterprise Mission Assurance Support Service (eMASS)
- Drafting and reviewing cybersecurity policy documents. Experience in reviewing architectural and engineering documents to meet cyber requirements.
- Reviewing Security Assessment Plans (SAPs), System-Level Continuous Monitoring (SLCM) plan, Implementation plans, and security control tailoring plans.
- Creating the Security Plan (SP) and SLCM completion, Plan of Actions and Milestones (POA&M)
- An active secret clearance is required to be considered for this role.
- Bachelor's degree required.
- At least two (2) or more years of IA/cybersecurity experience in the federal space (US Navy or USAF cyber support highly desired given those clients' commitments to RMF).
- Experience with providing IA and RMF services such as System Security Plans (SSP), risk assessment, audit policy, scanning policy, POA&Ms, HBSS implementation.
- Able to provide in-depth reviews of authorization packages and artifacts in the Enterprise Mission Assurance Support Service (eMASS) at RMF Steps 1, 2, and 5.
- Proficient with complete cyber risk assessments and deliver applicable artifacts.
- Experience with drafting and reviewing cybersecurity policy documents. Experience in reviewing architectural and engineering documents to meet cyber requirements.
- Able to review Security Assessment Plans (SAPs), System-Level Continuous Monitoring (SLCM) plan, Implementation plans, and security control tailoring plans at RMF Step 2 Checkpoint package submissions.
- Experience with creating and reviewing ports, protocols, services (PPS), and system authorization boundary diagrams for DoD Information Systems Network (DISN) Connection Process Guide (CPG) compliance.
- Must be able to create the Security Plan (SP) and SLCM completion, Plan of Actions and Milestones (POA&M), Risk Assessment Report (RAR), Security Assessment Report (SAR), and that all RMF Step 2 conditions have been met for RMF Step 5 Checkpoint submissions.
- Experience in reviewing completed Assured Compliance Assessment Solution (ACAS) scans and Security Technical Implementation Guide (STIG) checklists submitted for RMF Step 5 Checkpoint and modification request package submissions.
- MUST BE LOCAL TO SAN DIEGO, CA
Vacancy expired!