Cybersecurity Assessment and Authorization SME

Job description

Responsibilities & Qualifications RESPONSIBILITIES: Serve as a Cybersecurity Subject Matter Expert (SME) for Assessment and Authorization (A&A) activities supporting Department of Defense (DoD) information systems. Support the implementation and execution of the Risk Management Framework (RMF) for the authorization of information systems. Conduct security control assessments and evaluate compliance with NIST SP 800-53 security controls and DoD cybersecurity requirements. Provide technical guidance and subject matter expertise for systems undergoing the authorization process. Analyze vulnerabilities and determine applicable severity values for identified security control deficiencies. Assess the potential impact of vulnerabilities on a system’s current or future authorization status. Support authorization package development and review to ensure completeness, accuracy, and compliance with DoD cybersecurity policies. Evaluate cybersecurity posture across complex IT infrastructures consisting of multiple enclaves, AIS applications, and outsourced IT processes. Provide cybersecurity expertise related to emerging technologies including Cloud environments, Industrial Control Systems (ICS...