Agil3 Technology Solutions LLC (A3T) a small Women-Owned Service-Disabled Veteran-Owned and 8(a) Small Disadvantaged Business delivers expert-level information systems and cybersecurity solutions to federal state and private sector clients. We are seeking a highly skilled Cybersecurity Specialist to deliver advanced technical and operational support as part of our IT Modernization and Cybersecurity teams.Job Duties- Deliver Cybersecurity and RMF/FISMA support to mission owners; distribute current policy and provide guidance and mentorship to the cyber forces to ensure compliance.
- Assist MOBs & GSUs improve & maintain implementation of congressional FISMA DoD and AF cybersecurity directives.
- Conduct (on-site and/or virtual) A&A validation and reviews using National/DoD/AF standards (e.g. DISA Security Technical Implementation Guides (STIGs) National Institute of Standards and Technology (NIST) SP 800- 12).
- Collect and develop A&A artifacts in accordance with AO Office
- Assisting MOBs and GSUs maintain and sustain A&A packages including tracking/updating A&A documents/products in the following databases:
- Connection Approval Process (CAP) for SNAP
- GIAP circuit management tools
- eMASS and ITIPS
- Continuous Monitoring Risk Scoring (CMRS) efforts
- Assist MOB and GSUs create and maintain comprehensive RMF products for the theater circuits/enclaves via eMASS as required. Products must include all requirements IAW applicable DoD and AF Instructions.
- Assist the Government in the creation consultation revision finalization submission of the deliverables for RMF to include but not limited to the following:
- System Security Plan
- Ports Protocol Services Matrix (enclave)
- Artifacts for control validation (STIG results Policies Scans Charters etc. unit provided)
- Plan of Actions and Milestones (POAMs)
- System Topology
- Provide up-dates through AF central FISMA database repository ITIPS.
- Ensure A&A data are synchronized across AF and DISA repositories (eMASS ITIPS SNAP and GIAP).
- Assist processing circuit connection requests for all the main bases through SIPRNet Global Information Grid (GIG) Interconnection Approval Process (GIAP) System (SGS) and the NIPRNet SNAP.
- Prepare and mentor NAF Wing and cybersecurity forces through the CRR-M program.
- Train and assist MOBs & GSUs personnel in the use of DoD security technical implementation tools and technology to maintain & improve cyber readiness.
- Consult to resolve any issues with DoD required vulnerability scanning tools including system credentials access control list and identified network assets.
- Consult to resolve any issues with DoD required endpoint security solutions for all host devices in the network enclaves.
- Assist and prepare Wings for CORAs & CCORIs on NIPRNet SIPRNet and supported information systems.
- Create CORA and CCORI scores and Risk Assessment Report for the MOBs & GSUs using DISA CORA Scoring and Risk Assessment tools
- Provide recommendations for mitigations & follow-on actions to include POAMs.
General Position Requirements - Active Top Secret (TS) / Sensitive Compartmented Information (SCI) security clearance
- DoD 8570.1-M certified at Information Assurance Technical (IAT) Level 3 - Anyone (1) of the following:
- CompTIA Advanced Security Practitioner Continuing Education (CASP CE)
- Cisco Certified Network Professional-Security (CCNP-Security)
- Certified Information Systems Auditor (CISA)
- Certified Information Systems Security Professional (CISSP) (or Associate - this means the individual has qualified for the certification except for the number of years experience)
- Global Information Assurance Certification (GIAC) Certified Enterprise Defender (GCED)
- GIAC Certified Incident Handler (GCIH)
- Certified Cloud Security Professional (CCSP)
- 2-3 years of experience and the skills required to execute Federal National DoD USAF CIO and US State Department Requirements to be able to assess cyber risk identify mission sets and defend the mission.
- 2-3 years of experience of applying assessing and advising MAJCOM staff and Wings on cybersecurity requirements.
- Understand the AF Cyber architecture and PACAF MOBs and GSUs roles.
- Ability to travel to PACAF MOBs and GSUs to conduct duties and responsibilities at a minimum up to 40% of the time.
- Proficiency in Microsoft Office Suite products and SharePoint collaborative tools.
- Certificates of completion for the following training
- Level 1 Anti-Terrorist Training - within the past year
- Level A Survival Evasion Resistance and Escape (SERE) Training - within the past 1-2 years
- USFK Training - no time requirement (only required to be taken once)
- DoD Cyber Awareness Challenge - within the past year
- Operations Security (OPSEC) Awareness - within the past year
- Derivative Classification IF103.16 - within the past year
- Force Protection - within the past year
RMF/FISMA/ATO Requirements- 2-3 years of experience conducting RMF/FISMA/ATO A&A.
- 2-3 years of experience maintaining accreditation at a level consistent with AF DoD and FISMA requirements for all base enclaves and providing situational awareness of assigned systems at MOBs and GSUs.
- 2-3 years of experience with DISA Connection Approval Process vehicles (e.g. SNAP SGS GIAP and CDS-approval).
- Expertise with FISMA compliance vehicle AF centralized repository for FISMA reporting is ITIPS.
- Expertise with AF System A&A process vehicles (e.g. eMASS AF PPSM AF Software Approval) to produce ATO ATC Interim Authority to Connect (IATC).
CRR-M Requirements- 2-3 years of experience of conducting assessments of SIPRNet/NIPRNet network enclave and system security posture providing guidance mitigation recommendations and familiarization to personnel on cyber security to include prepare/advise pre- post- and during-inspections.
- In-depth experience with DISA STIGs and by-product analysis
CORA & CCORI Support Requirements- 2-3 years of experience of conducting CORA & CCORI inspections.
- Expertise with CORA process vehicles.
- Expertise with CCORI process vehicles (e.g. MADSS ELICSAR etc.)
- Expertise with USCYBERCOM/DISA CORA Scoring Tools (option to utilize the AF Cyber Ready 365).
Skills Knowledge & Abilities:- Ability to deliver Cybersecurity and RMF/FISMA support to mission owners; distributing current policy and provide guidance and mentorship to the cyber forces.
- Knowledge of congressional FISMA DoD and AF cybersecurity directives.
- In-depth experience conducting (on-site and/or virtual) A&A validation and reviews using National/DoD/AF standards (e.g. DISA STIGs NIST SP 800-12).
- In-depth experience collecting and developing A&A artifacts.
- Ability to maintain and sustain A&A packages including tracking/updating A&A documents/products in the following databases:
- CAP for SNAP
- GIAP circuit management tools
- eMASS and ITIPS
- CMRS efforts
- Proficiency in creating and maintaining RMF products for the theater circuits/enclaves via eMASS.
- Experience in creating consulting revising finalizing and submitting RMF deliverables.
- Ability to provide up-dates through AF central FISMA database repository ITIPS.
- In-depth experience ensuring A&A data is synchronized across AF and DISA repositories.
- Knowledge of processing circuit connection requests through SGS and SNAP.
- In-depth experience in mentoring.
- Ability to train and assist personnel with DoD cyber security tools and technology.
- Knowledge of how to resolve issues with DoD vulnerability scanning tools including system credentials access control list and identified network assets.
- Knowledge of how to resolve issues with DoD required endpoint security solutions for all host devices in the network enclaves.
- In-depth experience preparing Wings for CORAs & CCORIs on NIPRNet SIPRNet and supported information systems.
- In-depth experience with CORA and CCORI scores and Risk Assessment Report for the MOBs & GSUs using DISA CORA Scoring and Risk Assessment tools
- Ability to provide recommendations for mitigations & follow-on actions to include POAMs.
- Experience with email and other communication platforms to include but not limited to MS Teams group chats MS SharePoint site and VoIP Phones.
- Proficiency with the latest Microsoft tool suite (i.e. PowerPoint Excel Word etc.).
- Ability to collaborate with others.
- Ability to brief technical information to both technical and non-technical audiences.
- Experience briefing senior leaders and large audiences.
Company Overview
Agil3 Technology Solutions LLC (A3T) is a Northern Virginia based ISO 9001:2018 ISO 20000 & ISO 27001 Certified 8a Women-Owned (WOSB) and Service-disabled Veteran-Owned (SDVOSB) small business. A recent recipient of the prestigious Washington Technology TOP 50 (ranking #9 and on the list for last 4 years!) A3T is experiencing industry leading recognition and growth. In addition to the CEOs recognition as an All-Star Entrepreneur A3T is recognized by Inc Magazine as one of the fastest growing companies in the country by Vet 50 as Fastest Growing Veteran-Owned Businesses and is featured in CyberSecurity Ventures / Cybercrime Magazine! As a go-to Women-Owned Cybersecurity company in US and internationally. As part of our growth we are looking for YOU to join our growing team.
A3T offers excellent benefits to enhance the work-life balance including:
- Medical Insurance
- Dental Insurance
- Vision Insurance
- Life Insurance
- Short Term & Long-Term Disability
- 401k Retirement Savings Plan with Company Match
- Paid Holidays
- Paid Time Off (PTO)
- Tuition and Professional Development Assistance
- Parking/Travel Reimbursement (metropolitan areas)
Required Experience:
Senior IC