• Lead the Assessment and Authorization (A&A) and information assurance processes in accordance with Risk Management Framework (RMF) guidelines.

• Ensure the secure development and maintenance of tools, including managing accreditations and authorization processes; identifying and mitigating security risks and collaborating with stakeholders.

• Provide consultation, analysis and recommendations on system architecture, system configuration and data flows throughout the life cycle of tool development; including testing, operations, maintenance and decommission.

• Provide support services that include assisting project personnel in the identification and implementation of appropriate information security controls applicable to their systems, recommending mitigation strategies for vulnerabilities, recommending system exceptions and/or Plan of Action and Milestones, and assisting in the remediation of risk findings identified by Security.

• Maintain close liaison with ISSM office, with a focus on synthesizing ISSM guidance for streamlined and low-risk implementation for systems.

• Work with team to write and successfully execute Risk Mitigation Framework (RMF) and Plans of Action and Milestones (POA&Ms) to address cyber security issues and liens

• Serve as the office representative to relevant Cloud and Security related groups.

• Engage with C2E: Cloud Services Providers and provide recommendations for integration with customer tools as appropriate.

Required Qualifications:   

• Active TS/SCI security clearance with the required polygraph

• Bachelor’s degree in a related field with a minimum of 12 years of relevant experience; or a Master’s degree with 10 years of experience; or a Doctorate with 8 years of experience.

• Proven experience in supporting A&A and information assurance processes.

• Strong understanding of DISA STIGs and hands-on experience with STIG Viewer.

• Comprehensive knowledge of current security risks, protocols, and best practices.

• Proven experience in supporting A&A and information assurance processes.

• Strong understanding of DISA STIGs and hands-on experience with STIG Viewer.

• Comprehensive knowledge of current security risks, protocols, and best practices.

Bridge Core is proud to be an equal opportunity workplace and affirmative action employer. We celebrate diversity and are committed to creating an inclusive environment for all team members and applicants. At Bridge Core, we ensure fair treatment for our team members and applicants based on their abilities, achievements and experience without regard to race, national origin, sex, age, disability, veteran status, sexual orientation, gender identity or any other classification protected by law.