Capstone Corporation

Returning Candidate?

RMF Navy Qualified Validator (NQV)

RMF Navy Qualified Validator (NQV)

Job ID 
9420
# Positions 
0
Job Location 
US-
Additional Locations 
..
Experience (Years) 
18
Posted Date 
3/3/2017
Category 
Information Technology - Professionals
Displayed Min 
Displayed Max 

More information about this job

Overview

Capstone Corporation is seeking an RMF Navy Qualified Validator to function as a  Sr. Security Control Assessor to provide support to the Command and Control Security Operations Center (C2SOC) Commander, Navy Installations Command (CNIC) located in the Norfolk, VA area.

 

#capstone

 

Responsibilities

  • Provides on-site Information Assurance (IA) technical expertise in a broad array of areas, including IA and network security policy, Defense Information Assurance Certification and Accreditation Program (DIACAP) and Risk Management Framework (RMF), Public Key Infrastructure (PKI), Cloud Services, and data-at-rest requirements.
  • Performs security analysis of Governance Information Management/Information Technology (IM/IT) capability requests (applications, systems, networking devices) being introduced to the enterprise.
  • Supports Governance team in managing IT portfolios, including participation in various IA and Governance meetings.
  • Performs security testing and evaluation of applications against applicable security criteria using common tools, including ACAS, SCAP Compliance Checker, and DISA Security Technical Implementation Guides (STIGs).
  • Authors security testing reports, including Security Risk Assessment Reports to detail the findings noted during testing.
  • Develops mitigation strategies to address vulnerabilities discovered during security testing and assists programs with completing security documentation to meet Assessment and authorization requirements, as required.
  • Provides leadership and direction to team members working on the same project.
  • Executes engineering services to assist in ensuring compliance with Federal, Department of Defense (DoD), and Department of Navy (DON) and subservices regulations and policies.
  • Provides support for all aspects of Certification and Accreditation activities to include eMass, DIACAP, RMF, IV&V, and Information Security Continuous Monitoring (ISCM).
  • Conducts Security Operations Center (SOC) Operations to include: monitoring, detecting, scanning, recording, auditing, analyzing, investigating, reporting, remediation, coordinating, and tracking security-related events such as signs of intrusion, compromise, misuse, and compliance.
  • Validates and provides mitigation plans for vulnerabilities identified through the use of Host Based Security System Suite (HBSS) suite and or Assured Compliance Assessment Solution suite or the equivalent replacements.
  • Potentially acts as a team leader to plan and organize projects, direct multiple projects through different phases, and manage project resources.

 

Basic Qualifications

 

Minimum education and experience:

 

  • Technical training in relevant technical field.
  • Eighteen (18) years of hands-on experience with task specific project, to include three (3) of the following four (4) areas: Systems Requirements, Operational Requirements, Test and Evaluation, or Training.
  • Experience may be concurrent.

 

Additional minimum qualifications:

  • Recognized expert who has demonstrated industry and public service leadership in relevant technical field.
  • Experience with reviewing, comprehending and documenting findings from ACAS (Assured Compliance Assessment Solution) Reports.
  • Experience with SCAP (Security Content Automation Protocol).
  • Must successfully pass required drug screening.

 

Certifications:

  • In order to start, must have IAT/IAM Level III certification in accordance with the RMF Navy Qualified Validator (NQV) requirements.

 

Clearance:

 

  • Minimum DoD Interim Top Secret clearance.

 

EEO statement

EOE minority/female/disability/veteran

Connect With Us!

If you don’t see a current position that matches your skillsets, or you are not ready to apply, please join the Capstone candidate family and Connect with us for future consideration and communications.