Logo for SWCA Environmental Consultants

Information Assurance Cybersecurity Subject Matter Expert

Role overview

Qualifications

  • Bachelor’s degree in cyber security management and computer science
  • 5-7 years’ experience with implementation of the DoW RMF lifecycle
  • Security+ certification
  • Strong written and oral communication skills

Responsibilities

  • Perform ISSO duties supporting information assurance and cybersecurity
  • Initiate, obtain, and update Authority to Operate (ATOs) and risk assessments
  • Implement DoW DISA Security Technical Implementation Guides (STIG)
  • Conduct vulnerability risk analyses and assessments of applications

About the company

SWCA Environmental Consultants logo

SWCA Environmental Consultants

Environmental Services

SWCA is a 100% employee-owned environmental firm that offers comprehensive environmental planning, regulatory compliance, and natural and cultural resources management services. Our expanding team of professionals combines scientific expertise with in-depth knowledge of permitting and compliance protocols to achieve technically sound, cost-effective solutions for a full spectrum of environmental projects throughout the U.S. and its territories.

Company details

Company typeLarge
IndustryEnvironmental Services
Company size1001 - 5000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Overview:

Goldbelt Apex, a part of the Healthcare Technology Transformation Group, is a data-focused company dedicated to process and quality in every aspect. As experts in healthcare IT experts, Apex is committed to building systems for healthcare organizations to seamlessly communicate and exchange data across different systems and devices. 

Summary:

The DHA Hearing Center of Excellence (HCE) is currently seeking an experienced Information Assurance (IA) Cybersecurity Subject Matter Expert (SME) to support the Department of War (DoW) HCE Enterprise Audiology Programs and Data Solutions branch to assist in leading cyber security efforts for existing and potential future audiology applications and systems in accordance with DoDI 8510.01 Risk Management Framework (RMF), National Institute of Standards and Technology (NIST) Special Publication 800-53 (Revision 5) cyber security compliance requirements outlined within the Defense Health Agency (DHA) RMF.  The IA SME will devise solutions that integrate information security requirements to proactively manage information protection throughout an application and our system's lifecycle.

Responsibilities:

Essential Job Functions:

  • Perform Information System Security Officer (ISSO) duties supporting information assurance, cybersecurity, and the application of the information technology security principles, methods, and security products to protect and maintain the availability, integrity, confidentiality, and accountability of information systems.
  • Initiate, obtain, and update the Authority to Operate (ATOs), risk assessments for application/system, complete the continuous monitoring strategy tasks, and annual self-assessments.
  • Complete required tasks within Enterprise Mission Assurance Support Service (eMASS) (asset manager, artifacts, control correlation identifiers (CCIs) responses, Plan of Action and Milestone (POA&M) creation, Ports, Protocols, and Service Management (PPSM) and any other RMF activities supporting accreditation).
  • Implement DoW Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG).
  • Perform analysis, design, and development of security solutions and plans for system architecture requirements.
  • Create and maintain IA and ATO related artifacts and documentation.
  • Request Assured Compliance Assessment Solution (ACAS) scans from Data Center Operations (DCOPS) Cyber Security team.
  • Respond to DCOPS Cyber Security requests for ACAS credential validation.
  • Evaluate and coordinate security program requirements; recommend information assurance/security solutions; and identify, report, and mitigate security violations.
  • Conduct vulnerability risk analyses and assessments of applications and peripheral devices during all phases of the system development life cycle.
  • Develop and implement information assurance/security standards and procedures in accordance with NIST publications.
  • Support the medical devices risk assessment and standardization initiative to ensure the audiology community is utilizing commonly used enterprise-wide components to minimize non-compatibility or incident issues when capturing audiometric testing results.
  • Act as a coordinator with costs related to the accreditation including independent audits/Independent Verification and Validation (IV&V).
  • Develop all systems documentation including Privacy Threshold Analysis (PTA)/Privacy Impact Assessment (PIA), Federal Information Processing Standards (FIPS) 199, Standard Operational Procedures, Business Impact Assessment, and all supporting documents and artifacts.
Qualifications:

Necessary Skills and Knowledge:

  • Proficient in the application and functionality of the eMASS system.
  • Experience in conducting manual and technical techniques for mitigation of vulnerabilities or requirements.
  • Experience in implementing DISA STIGs, including the ability to find the guidance and tools available for the security measures to be taken for a particular system, application, or environment after assessing standards for implementation and compliance.
  • Prior experience in completing the RMF ATO process (created artifacts, examined CCIs, and compose POA&M records).
  • Strong written and oral communication skills.
  • Work independently in a remote environment.

 

Minimum Qualifications:

  • Must possess 5-7 years’ experience with implementation of the DoW RMF lifecycle.
  • Bachelor’s degree in cyber security management and computer science.
  • Certifications: Security+

Preferred Qualification:

  • Certified Information Systems Security Professional (CISSP)
  • Master’s degree in a related field
  • Secret Security Clearance

Pay and Benefits

The salary range for this position is $90,000.00 to $110,000.00 annually.

 

At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Cybersecurity Analyst Related jobs

Other jobs at SWCA Environmental Consultants

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.