Listing Description

Teracore is a Service Disabled Veteran Owned Small Business (SDVOSB) classified management consulting and information technology services firm. We are committed to creating and maintaining a corporate environment and culture that promotes long-term employment. Diverse talents help us to achieve the missions and objectives of our customers. We hope we can partner together to achieve those goals.

Clearance Required: TS/SCI; Must be able to successfully pass/maintain a U.S. Government Polygraph (post-hire)

Purpose:  Administer, assure, and maintain the required operational security posture assigned information systems. The candidate will collaborate with the Information Systems Security Manager and will monitor systems and their environments. Provide engineering and technical support to ensure the Wing and their components achieve initial and recurring accreditation.

Develop and sustain RMF A&A packages to maintain Authorization to Operate (ATO) and meet all requirements for Risk Management Framework (RMF) for DoD Information Technology (IT) and Federal Information Security Management Act (FISMA) Reporting .

1. 
   
   
   
   1. Provide the RMF surveys and document responses into the Enterprise Information Technology Data Repository (EITDR). Verify the RMF questions are answered to meet or exceed the common minimum standards as required to support annual FISMA reporting requirements.
   
   
   2. Develop RMF certification packages for accreditation approval and/or maintaining Authority to Operate (ATO).
      
      
      
      • RMF Plan of Action and Milestone to include a timeline and resources to mitigate outstanding risks to an acceptable level.
      
      
      • RMF Scorecard to include validated and tested IA controls based on Mission Assurance Category and Confidentiality Level
      
      
      • Validation evidence for all appropriate IA Controls formatted for easy upload into RMF workflow tool
      
      
      • Final System Identification Profile
      
      
      • Final RMF Implementation Plan
      
      
      
      
   
   
   3. Provide engineering and technical support for the Assessment & Authorization (A&A) standards and processes to achieve uniform quality and a level of consistency throughout the life cycle of the systems.
   
   
   
   

System Artifacts - Develop, review, and finalize the necessary written documentation, technical drawings/diagrams, or spreadsheets necessary to satisfy DoD IA controls, C&A, and RMF A&A processes including the following artifacts:

1. 
   
   
   
   • System Security Concept of Operations
   
   
   • Security Requirements from Appropriate IA Controls
   
   
   • Security Maintenance Procedures
   
   
   • System Security Architecture and Interconnects
   
   
   • Continuity of Operations Plan
   
   
   • Data Backup Plan
   
   
   • Disaster Recovery Plan
   
   
   • Maintenance Support Plan
   
   
   • Hardware Baseline Inventory
   
   
   • Software Quality Plan
   
   
   • Systems Rules Behavior
   
   
   • Physical Functions System Security Descriptions
   
   
   • Security Plan
   
   
   • Security Assessment Report
   
   
   • Plan of Action and Milestones
   
   
   
   

Information Assurance Support

1. 
   
   
   
   • Validate and support the implementation of information security measures and procedures, including reporting incidents to the IA Officer and appropriate reporting chains.
   
   
   • Implement and enforce all DoD Information System (IS) and Platform Information Technology (PIT) system cybersecurity policies and procedures, as defined by cybersecurity-related documentation.
   
   
   • Verify that all users have the requisite security clearances and access authorization and are aware of their cybersecurity responsibilities for DoD IS and PIT systems under their purview before being granted access to those systems.
   
   
   • initiate protective or corrective measures when a cybersecurity incident or vulnerability is discovered and ensure that a process is in place for authorized users to report all cybersecurity- related events and potential threats and vulnerabilities to the Information System Security Officer (ISSO).
   
   
   • Verify all DoD IS cybersecurity-related documentation is current and accessible to properly authorized individuals.
   
   
   • Ensure all IT systems are configured and operated IAW DoD cybersecurity policies and procedures.
     
     
     
     • Observe policies and procedures governing the secure operation and authorized use of DoD IT systems, including operations security.
     
     
     
     
   
   
   • Develop and maintain an organizational or system-level cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures.
   
   
   • Maintain IAT 8570 certification of DoD information baseline requirements; approved hardware/software, Security Technical Implementation Guide, vulnerability requirements, etc. as listed in Appendix D.
   
   
   • Report on violations of AF IA policies and procedures to the appropriate functional manager for supported networks (Ares/Argos/Rooknet).
   
   
   
   

Degree and Years of Experience: BA/BS Degree and typically between Two (2) and Eight (8) years of related technical experience in Network Security with large-scale enterprise/global networks in high-paced, diverse environment.

Required Certifications:

• DoD 8140.01 and DoD 8570.01-M IAT Level II compliant certification (current)


• RMF Assessment and Authorization (A&A) or Certification & Accreditation (C&A)


• RMF Practitioner Certification

At Teracore, we support, depend and thrive on differences for the benefit of our associates and customers. Teracore is an equal opportunity employer. Employment decisions are based solely on a person's merit and professional qualifications directly related to job competence.