Cybersecurity A&A SME (RMF)

TL;DR

Cybersecurity A&A SME (RMF): Executing comprehensive Assessment and Authorization (A&A) workflows and managing lifecycle RMF packages for USTRANSCOM across NIPRNet, SIPRNet, and commercial cloud environments with an accent on compliance evaluation and security impact assessments. Focus on engineering automated data mechanisms for DevSecOps pipelines and implementing Zero Trust compliance status.

Location: On-site at Scott Air Force Base (AFB), IL

Company

hirify.global is an emerging technologies focused company providing expert systems and network engineering solutions to the Department of Defense.

What you will do

• Manage eMASS workflows and lead Package Readiness Reviews (PRRs) to finalize authority-to-operate (ATO) packages.
• Perform deep-dive Independent Verification & Validation (IV&V) of system STIG checklists, SCAP scans, and ACAS findings.
• Evaluate POA&M closure evidence and author formal Risk Acceptance (RA) memorandums for military leadership.
• Conduct security impact assessments for DevSecOps cloud applications and validate IaC templates (Terraform, Ansible).
• Engineer automated pipeline integrations to ingest continuous test results into eMASS using OSCAL or native API schemas.
• Monitor Zero Trust compliance status against the DoD Capability Execution Roadmap.

Requirements

• Active Department of Defense Top Secret/SCI (Tier 5 Investigation) required.
• On-site presence at Scott Air Force Base (AFB), IL.
• Active DoD 8570.01-M / DoDM 8140 IAM Level II or higher certification (e.g., CAP, CISSP, or CISM).
• Active eMASS Tier 2/3 User Validation and official ACAS Administrator certification.
• Completion of Defense Cyber Crime Center (DC3) Cyber 101 course.
• 6–9 years of relevant RMF compliance and package engineering experience within a combatant command framework.

Culture & Benefits

• 100% company-paid premiums for medical, dental, and vision insurance.
• 401(k) match up to 10% of employee salary contributions.
• Comprehensive training and development program to keep the team current on latest advances.
• 11 paid holidays and initial PTO accrual starting at 15 days annually.
• Short and long term disability plans.