- …8570 Baseline Certification (eg CISSP-ISSEP or CASP certification). + Experience with DIACAP/DoD RMF , DCID 6/3, ICD-503, NIST 800-53, and/or RMF . + Proficiency ... in hardening modern operating systems and implementing security engineering best practices. + Some scripting experience is a plus. + Up to 10% travel may be required. **Preferred Qualifications:** + Software development experience in Java, C, C++, or other… more
- Leidos (Alexandria, VA)
- …gaps and provide mitigation recommendations. + Validate cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines. + Provide ... tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS + Understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253 + Strong written and… more
- BOOZ, ALLEN & HAMILTON, INC. (Alexandria, VA)
- …cia ls + 5+ years of experience with DoD Risk Management Framework ( RMF ) , vulnerability assessments, IA Vulnerability Alerts ( IAVA ) reporting, and Information ... IA ) problem resolution + Experience with control implementations asso cia ted with RMF , FedRAMP, ICD 503, and DoD Information Levels, including applying them to the… more
- Leidos (Alexandria, VA)
- …gaps and provide mitigation recommendations. + Validate cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines. + Provide ... such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS + Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253, as well as key… more
- Leidos (Alexandria, VA)
- …vulnerabilities, and threats. + Ensure ConMon-related controls are properly implemented in RMF packages within eMASS. + Report system risk status using the ... tools: Qmulos, Splunk, ACAS, Axonius, CheckMark, BURP, and HBSS + Understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253 + VMP experience… more
- Leidos (Alexandria, VA)
- …assessments, risk analyses (operational and technical) and authorization tasks across all RMF steps using approved RE5 tools and processes. + Verify authorization ... and Milestones (POA&Ms) and cybersecurity best practices + Advanced understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253 + Demonstratable… more
- General Dynamics Information Technology (Bethesda, MD)
- …None **Job Family:** Cyber and IT Risk Management **Skills:** RMF ,Security Controls,Security Technical Implementation Guide (STIG) **Experience:** 8 + years ... including system level attacks and user level attacks + Applies experience with RMF , CNSSI 1253, NIST SP 800-53, and NISPOM + Applies experience with Security… more
- Marriott (Bethesda, MD)
- …as well as Industry Best Practice Frameworks, including, but not limited to, NIST RMF , NIST CSF, PCI DSS, GDPR, MPLS, EU Privacy, and ISO. Periodically prepare and ... Security Professional (GISP), or similar . Familiarity/experience with NIST RMF . Familiarity/experience with SDLC **Preferred:** . Cloud computing certification,… more
- General Dynamics Information Technology (Falls Church, VA)
- …support DoD compliance objectives, with a working understanding of Risk Management Framework ( RMF ) and the Authority to Operate (ATO) process. + Contribute to secure ... within a government funding or chargeback model. + Working knowledge of RMF and ATO processes, including required documentation and lifecycle phases (SSP, POA&M,… more
- Steampunk (Mclean, VA)
- …principles, processes, and tools. + Maintaining compliance with NIST, FISMA, RMF (Risk Management Framework), and organizational security requirements. + Supporting ... 1 of which must be FISMA-related **Required Skills** + Hands-on experience with RMF , NIST 800-53, FISMA, and related security frameworks + Strong working knowledge… more