Job Overview:
Premier Enterprise Solutions is seeking a highly skilled Risk Management Framework (RMF) Administrator to support cybersecurity efforts and ensure compliance with Department of Defense (DoD) regulations and standards. The ideal candidate will be responsible for overseeing RMF system authorization documentation, managing system-level cybersecurity documentation, and ensuring that IT systems remain compliant with IA (Information Assurance) controls. This role requires experience with RMF processes, cybersecurity tools, and effective communication with military, civilian, and industry partners.
Key Responsibilities:
Oversee the development of RMF system authorization documentation and maintain a comprehensive repository for all cybersecurity-related documents.
Manage and review RMF packages, including System Identification Profiles, RMF Implementation Plans, Scorecards, POA&Ms (Plan of Action and Milestones), EMASS/RMF Artifacts, and IA Controls.
Update and maintain POA&Ms to track the resolution of identified vulnerabilities across systems.
Develop and maintain all Assess and Authorize artifacts for multiple systems.
Facilitate the processing and completion of Authority to Operate (ATO) documentation.
Maintain necessary action items and milestones related to System Authorization Packages, MTOs, and identified deficiencies.
Analyze Assured Compliance Assessment Solutions (ACAS) scan results and develop documented mitigations and POA&Ms for any open findings.
Assist in the creation, maintenance, and enforcement of organizational cybersecurity programs, architecture, requirements, policies, and procedures.
Evaluate information systems for compliance with Government statutes, DoD 8500.2 IA, NIST 800-53 controls, DISA Security Technical Implementation Guides (STIGs), and other applicable AF policies.
Ensure new information systems are configured in compliance with current DISA STIGs and DoD/DAF directives.
Utilize Enterprise Mission Assurance Support Service (eMASS), Assured Compliance Assessment Solutions (ACAS), and AFIN Compliance Tracker (ACT) to track vulnerabilities and compliance.
Ensure all records in the Information Technology Investment Portfolio Suite (ITIPS) are updated and maintained for ANGRC's IT portfolio.
Effectively interact with various military, civilian, and industry personnel to support cybersecurity initiatives.
Provide expert advice on cybersecurity processes and recommend additional steps to ensure compliance with DoD IA requirements and baseline controls.
---
Read Less