Armavel, LLC is offering an opportunity to be a part of a growing, forward-thinking team in an engaging, fast-paced environment. As a Cybersecurity Analyst you will work with a well-developed team of professionals to help ensure the security of cloud and emerging technologies being considered for use at a large federal agency.
What You’ll Be Doing
- Reviewing cloud network topologies to identify potential issues
- Assessing SaaS products to identify security gaps between FedRAMP security baselines and the SaaS Vendor's security practices to achieve an Authority to Operate (ATO).
- Engaging and guiding Vendors through the FedRAMP process
- Creating processes for improving team workflows
- Translating requirements to federal stakeholders to support the development of security documentation.
- Navigating the VA GRC tool to quickly progress systems through the RMF process.
- Developing informational updates and action plans based on industry meetings and conference calls
- Collaborating daily and weekly with our team to ensure transparent communication, project priorities and effective team efforts
What Makes You Great
- Positive attitude (required)
- Strong analytical, conceptual, and problem-solving abilities
- Strong written and oral communication skills
- Proven ability to prioritize and execute tasks in a high-pressure environment
- Proven ability to work in a team-oriented, collaborative environment with both technical and non-technical team members
- Experience supporting all RMF steps, security categorizations, creating and updating security artifacts and FISMA security documents, control implementation details, and Plan of Action and Milestones (POA&M)
- Experience with National Institute of Standards and Technology (NIST) SP 800-53 security controls, RMF, and system authorizations and security compliance standards and processes
- Experience creating plans and approaches for executing product installation securely in accordance with agency authorization policy requirements for system major changes and development lifecycles, while identifying potential risks and working with system stakeholders to create mitigation strategies to reduce or eliminate risks
- Experience analyzing authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with system stakeholders to address identified gaps in accordance with required deadlines
- Ability to independently lead client-facing meetings and present complex ATO topics to the client
- Ability to organize, manage, and maintain large amounts of discrete data with various expiration dates across multiple systems simultaneously
What You Know
- Bachelor’s Degree in Computer Science or similar, or 18 years total relevant experience (required)
- 10+ years of experience in information technology
- CAP or CISSP or CCSK (preferred)
What You Have to Have
- 5 years of cybersecurity experience
- Experience with a risk management framework such as NIST 800-53, ISO 27001, ISO 27002, HITRUST, or FedRAMP
- Familiarity with the Risk Management Framework and NIST 800-37.
- Federal Information Systems experience & knowledge of the security control assessment process (preferred)
- Information Security experience within a Government, Healthcare, or Privacy Sensitive environment (preferred)
- Experience with Continuous Authorization and Monitoring (CAM)
- Experience working with the VA
- Experience supporting ATOs for specialized devices
- Ability to engage with varying levels of staff and leadership
- Must be a US Citizen, with the ability to obtain a US Security Clearance
- Some travel may be required
Why this position is rewarding
- Fully remote workforce – work from anywhere in the US!
- You’ll get lots of work done, and work with a team that likes to hustle.
- You get to play a big part in important technologies being brought to an entirely new audience and get to work with some cool technology companies.
- Your work will benefit veterans.
Company Description
Armavel is a fast-growing IT consulting firm that has built a culture founded on a values-first philosophy. We are passionate about delivering results that are timely and world class via an environment that has all the ingredients for our people to thrive. With this in mind, we seek out candidates that demonstrate the following characteristics: honesty, humility, hustle, empathy, resilience, and positivity. These attributes are vital to our company’s growth and are our first priority in our hiring decisions.