Risk Management Framework Analyst

Overview:

Goldbelt Taku is accelerating healthcare delivery and providing superior force health readiness across the military, federal, and civilian landscapes. Goldbelt Glacier is committed to providing transformative and comprehensive health operational capabilities to support customers across scientific, clinical, technological, and program management areas.

Summary:

We are currently seeking a highly experienced Risk Management Framework Analyst to join our dynamic team. As the Risk Management Subject Matter Expert (SME) you must possess a deep understanding of cybersecurity, including the entire RMF process, as well as experience with CSAM, AWS, and SkillBridge.

Essential Job Functions:

• Lead the Risk Management Framework (RMF) process to achieve and renew Authority to Operate (ATO) for platform information technology systems.
• Develop and maintain the complete security Body of Evidence (BoE) while leading the Assessment & Authorization (A&A) activities in accordance with RMF processes
• Create, complete, and maintain the System Security Plan (SSP), Security Controls, and plan of action and milestones (POA&Ms) within eMASS.
• Support the implementation of cyber policies, development of artifacts, and updates to requirements.
• Perform verification and validation of delivered systems; develop test plans and procedures.
• Assist in assessing Assured Compliance Assessment Solution (ACAS) scans & Security Technical Implementation Guides (STIGs).
• Develops and implements information assurance/security standards and procedures.
• Coordinates, develops, and evaluates security programs for the organization.
• Authors and updates security documentation to include but not limited to: system security plan, contingency plans, and configuration management plans.
• Identifies, reports and resolves security violations.

Necessary Skills and Knowledge:

• Measures effectiveness of assessment by reviewing results.
• Prepares and delivers presentations, reports, and other findings to senior leadership.
• Proficiency with the MS Office suite.
• Strong organizational skills and attention to detail.
• Must be an energetic, thoughtful, product-oriented, reliable, flexible, open-minded individual with a strong eagerness to learn and a demonstrated work ethic.
• Demonstrated ability in forward-thinking and proactive problem-solving.
• Ability to speak fluent English with strong interpersonal skills.
• Excellent written and verbal communication skills.
• Outstanding analytical and problem-solving capabilities.
• Ability to work independently and complete projects with minimal supervision.
• Sound understanding of coding and development processes.
• Ability to write clean, easy to understand code.
• Experience with working in an agile environment.
• Experience with full-stack development.
• Well-versed in technologies such as C#, JavaScript, and SQL databases.
• Capability to collaborate with a group of developers.
• Ability to adapt quickly to a multicultural environment.

Minimum Qualifications:

• Must be a US Citizen.
• Must be able to obtain and maintain a DoD Tier-3 / National Agency Check with Law and Credit (NACLC) background investigation in accordance with DODI 5200.02-DoD Personnel Security Program (PSP).
• Bachelor’s Degree in Computer Science, Cyber Security, Information Technology, Software Engineering, Information Systems, or Computer Engineering degree from an accredited college or university.
• 10+ years of demonstrated hands-on experience
• 5+ years of experience supporting DoD or Federal projects.
• 5+ years of experience in user research.
• Extensive RMF experience
• CSAM experience
• Familiarity with NIST 800-53 controls

The salary range for this position is $95,000 to $110,000 per year.

Pay and Benefits
At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.