RMC is seeking a Cybersecurity Analyst/Risk Management Framework (RMF) Expert in the Fort Bragg, NC area. 

Do you want to be part of a team of highly skilled professionals performing challenging and rewarding work? Consider a career with Risk Mitigation Consulting (RMC). RMC is a purpose-driven company on a relentless mission to deliver impact and service to our customers in the federal and commercial markets. We are about improving security for military and global commercial partners through our Risk Management, Mission Assurance, Cybersecurity, and other technical services. Our talented team is our top priority, which is reflected in our flexible work environment and highly rated culture.

Come join our team and be a part of our mission of Assuring Tomorrow!

RMC offers:

• Health, vision, and dental insurance for the employee is paid in full by RMC and dependent health care is subsidized by RMC.
• This position participates in the Annual Bonus Program.
• Travel: CONUS, approximately 35%
• 25% telework; 75% government site

Responsibilities

• Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades
• Conduct risk assessment and provides recommendations for remediation
• Handle a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
• Design and develop new systems, connections, and solutions for external DoD customers systems and networks.
• Maintain responsibility for managing cybersecurity risk from an organizational perspective.
• Support security authorization activities to ensure compliance with the DoD Risk Management Framework (RMF)
• Provide security guidance and IS validation using National Institute of Standards and Technology (NIST) RMF, DoD, and local security policies
• Provide subject matter expertise for cyber security and trusted system technology
• Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems
• Research, write, review, disposition feedback and finalizes recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes
• Maintain package artifacts and test results within eMASS
• Support analysis of the findings and provides expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems

Requirements

• Active DoD SECRET Clearance
• 5 years of RMF experience
• 3 years of eMASS support and experience
• Ability to implement RMF cybersecurity controls onto OT computer systems
• Certifications in one of more of the following: CISSP, CISM, CAP
• Experience with US Army RMF process
• Demonstrated ability to connect and influence others to achieve organizational priorities
• Strong familiarity with information security, risk management, and IT governance standards and frameworks (e.g., NIST 800-53, NIST 800-37, ISO 27000, ISO 31000)
• Experience in formal risk assessment and risk management practices
• Experience with vulnerability analysis processes and best practices
• Strong customer service experience dealing with diverse customer set.
• Strong influencing and negotiation skills with ability to successfully navigate dynamics (e.g., politics, culture) of federal government-related work
• Ability to effectively troubleshoot/pivot under potentially challenging circumstances as needed, solution oriented

Preferred Skills

• Knowledge of system architectures, networks, and operating systems
• Experience managing DoD programs a significant plus
• Experience with Army systems and RMF process
• Experience with US Army Special Operations Command and US Army National Guard units a plus

Desired Certifications

 Active ISC2 CISSP, CISM, CAP

ADDITIONAL REQUIREMENTS

Compliance with a drug-free work environment, U.S. Citizen, and must possess valid state driver’s license.

RMC is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.