Средняя вакансия

Описание вакансии подробное, но роль связана с конкретной государственной безопасностью, что может ограничить возможности. Компания является аутсорсинговой, что может подразумевать менее благоприятный баланс между работой и личной жизнью.

Кликните для подробной информации

Оценка от Hirify AI

Company hidden

6 дней назад

RMF Engineer (Cybersecurity)

Формат работы

onsite

Тип работы

fulltime

Английский

Страна

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

RMF Engineer (DoD Cybersecurity): Developing, assessing, reviewing, and maintaining RMF documentation and authorization artifacts for DoD systems throughout the lifecycle with an accent on system categorization, security controls, and compliance. Focus on creating SSPs, CPs, test plans, conducting assessments, and supporting A&A activities in eMASS.

Location: Suffolk, VA with up to 20% travel to locations including North Carolina, San Diego, CA, and Hawaii.

Company

Service-Disabled Veteran-Owned Small Business (SDVOSB) delivering IT, cybersecurity, and engineering solutions to DoD and federal customers.

What you will do

Assist in identifying information types, system boundaries, and flows for accurate categorization.
Develop, maintain, and update RMF documentation including SSPs, CPs, and continuous monitoring strategies.
Provide artifact support and justification for security controls selection and implementation.
Support assessment of implemented security controls, identify gaps, and develop engineering change recommendations.
Create security control test plans, conduct assessments, evaluate results, and identify remediations.
Conduct final reviews of RMF artifacts in eMASS and address approving authority feedback.

Requirements

Active or current DoD Secret Security Clearance
Experience supporting DoD RMF processes and A&A activities
Hands-on experience developing RMF artifacts (SSPs, CPs, control evidence, test plans)
Familiarity with NIST SP 800-53, RMF steps, and authorization workflows
Experience with eMASS for uploading, managing, and validating artifacts
Strong collaboration and technical documentation skills

Nice to have

Experience in DoD research, development, or operational environments
Security control testing and assessments
Understanding of system engineering and configuration/change management
DoD 8570/8140 certification (e.g., Security+, CAP, CISSP)

Culture & Benefits

Mission-focused DoD programs with operational impact
Supportive, veteran-driven company culture
Exposure to complex security environments
Stable, long-term federal work

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →