Pre-Deployment RMF Support Specialist

• Risk Management Framework
• Risk Management Principles
• Risk Management Analysis
• Risk Management from a Technical / Functional Perspective

Our client that is working a hybrid model is currently looking for a RMF Support Specialist for their long term project. This is for US Citizens only with the ability to get a security clearance if they don't already have a IT2 or secret clearance. The client is working mainly remote but travel is required a critical points which usually amount to once every 3-6 months. 

Must have 5+ years of extensive experience for the creation, consultation, and ongoing assessment and authorization (A&A) documentation in compliance with Federal Cybersecurity policies and guidelines including DoD 8500 and NIST 800-53 controls. Additionally, evaluate information assurance compliance and coordinate program security documentation for various Federal customers.

The Cyber RMF Analyst is an industry recognized thought leader that has mastered multiple NIST/RMF practices.
Serves as a subject matter expert to advise for RMF packages, strategies, and technical components to ensure compliance of NIST 800-53 security controls.
* Serves in a technical leadership role that includes consulting on systems and their plans, design, development, implementation of projects focused on Cyber Security.
* Develops and maintains strategic relationships with Sales Management of the teams and is seen as a 'go-to person' for cyber security strategies; and is on the forefront of new and emerging solutions and implications offerings and services.
* Develop and capture the requirements for a government security solution in collaboration with stakeholders.
* Assess solutions' architectural designs for compliance with NIST 800-53 and DOD related policies for on premise and cloud-based solutions; prepare assessment documentation.
* Develop security artifacts to support the IA program to include System Security Plans (SSP), Security Assessment Reports (SAR), Risk Assessment Reports (RAR), Security Control Traceability Matrix (SCTM), Plan of Action and Milestones (POA&M), System Design and Installation Procedures, System User Guides, Privileged User Guides, Security Test Procedures and other documents as needed.
* Support systems through all steps of RMF and enable Gov Client to achieve and or maintain authorities.
* Review vulnerability scan results at the operating system (OS) and application level and work with stakeholders to architect and implement mitigations

Work closely with client project teams to provide expertise (functional, technical, industry, tools/methods) to ensure successful solution design and delivery.
Support requests from the Government [or other contractor]; develop presentations (with the team) to demonstrate compliance with the requested information.
Review requirements provided by the audit team and identify the functionality that satisfies those requirements.
Support FISCAM and FIAR Audits, and FFMIA Audits