Marathon TS is seeking an experienced Information Assurance Engineer with a strong background in Risk Management Framework (RMF) Assess Only Scanning and Review, RMF Authorization to Connect (ATC), RMF Continuous Monitoring, and various aspects of Cyber Security Operations. The ideal candidate will possess expertise in Security Technical Implementation Guides (STIG) Compliance Auditing, POA&M Tracking, Compliance Monitoring and Tracking, Firewall Request Review, Incident Response, and Reporting. This role also involves the administration and configuration of various Cyber Security tools.

Responsibilities :

- Conduct thorough assessments of systems and networks using RMF guidelines

- Perform vulnerability scanning and review the results to identify potential security risks.

- Lead the process of obtaining and maintaining Authorizations to Connect for information systems.

- Collaborate with stakeholders to ensure compliance with RMF requirements

- Implement and maintain continuous monitoring processes to ensure the ongoing security of systems

- Respond promptly to security incidents and provide recommendations for remediation.

- Manage Plans of Action and Milestones (POA&M) to track and prioritize security vulnerabilities.

- Work closely with teams to ensure timely resolution of identified issues.

- Conduct regular audits to assess and ensure compliance with Security Technical Implementation Guides (STIGs).

-Provide recommendations and implement corrective actions to address non-compliance.

- Monitor and track compliance with cybersecurity policies and procedures.

- Develop and implement measures to enhance overall compliance posture.

- Review and evaluate firewall requests to ensure they align with security policies and standards.

- Collaborate with network administrators to implement secure firewall configurations.

- Develop and execute incident response plans in the event of security incidents as well as prepare detailed incident reports and contribute to post-incident analyses.

- Administer and configure various Cyber Security tools to enhance the organization's security posture.

Qualifications:

• DoD Sec CE
• DoD Interim Secret Clearance
• Proven experience in Information Assurance, Cyber Security, or a related role.
• In-depth knowledge of RMF, STIGs, and cybersecurity best practices.
• Strong analytical and problem-solving skills.
• Relevant certifications such as CISSP, CISM, or CEH are preferred.
• Excellent communication and collaboration skills.

Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status").