Primary responsibility is to perform tasks related to Assessment & Authorization (A&A) within the Defense Health Agency to ensure assigned DoD systems/Enclaves/Networks can obtain and maintain Authorization to Operate (ATO) and Authorization to Connect (ATC) certifications. Conduct risk and vulnerability assessments of information systems to identify vulnerabilities, risks, and protection needs.
This position will be a part of a team developing recommended courses of action needed to transition current policies and procedures to the Risk Management Framework (RMF) approved processes.
Provide solutions to complex problems that require the regular use of expertise and creativity. Problems are broadly defined and solutions require the continuation of specialized theories and knowledge. Serve as Subject Matter Expert (SME) on one or more technologies.
BA/BS in Information Systems Management, Computer Science or related discipline plus 6 years of experience. In lieu of formal education, at least 12 years of related experience. Specific contract requirements regarding education and experience will prevail.
Secret clearance. Candidates that do not have a clearance will undergo a government background investigation and must meet the requirements for access to sensitive government information if selected for position.
Must possess a CompTIA Security + to start work
OS Certification/Approved Training completed within 180 days of hire
Experience with DIACAP and RMF in DHA a plus
Experience with Accreditation package management in eMASS a plus
Excellent customer service and organization skills
Excellent oral and written communication skills
Familiarity with Guidance:
Risk Management Framework
NIST 800 series policies & Guidance
NIST Federal Information Processing Standards (FIPS)
Department of Defense Instructions (DoDI)
Security Technical Implementation Guides (STIGs)
Familiarity with Toolsets/Technologies:
Assured Compliance Assessment Solution (ACAS)
Knowledge in at least one in the following OS/Technologies
Databases MS SQL , Oracle
Active Directory / Group Policy
Is Driving Required?
Export Control Technology:
Full Time / Part Time?
Street Address of Work Location
9040A Jackson Ave, Joint Base Lewis-McChord, WA 98431
US Security Clearance Required?
FAA screening required?
DOD clearance required?
DOE clearance required?
SCA Eligible Position?
Will worker be permitted to submit expenses?
Special Requirements/ Certifications:
Secret Clearance required -- Candidates must be a U.S. Citizen --- Ensure candidate experience relates to that which is provided in the job description and experience is clearly identifiable on resume for client review --- Opportunity for contract-to-hire based on worker performance, worker attendance and dependability and client business needs. --- Start date will be moved up as needed in order for selected candidate to start ASAP once on-boarding is completed/clear and final clearance is obtained. Be sure your candidates are available to start right away once on-boarding is complete. ---- Worker will utilize DelTek for weekly time reporting. It is imperative that the registration is completed as soon as possible after receipt of registration invitation. Your attention to this process will eliminate delays in receipt of worker hours and invoice creation. -- Client Manager will conduct phone and in-person interviews.
Nesco Resource is an equal employment opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, or veteran status, or any other legally protected characteristics with respect to employment opportunities.
Nesco Resource, LLC