More jobs:
Information Assurance Compliance Specialist II Security Clearance
Job in
Philadelphia, Philadelphia County, Pennsylvania, 19019, USA
Listed on 2025-12-30
Listing for:
Arlo Solutions
Full Time
position Listed on 2025-12-30
Job specializations:
-
IT/Tech
Cybersecurity, Information Security
Job Description & How to Apply Below
Company Summary Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future.
Position Overview The Specialist, Information Assurance Compliance II (SIAC2) will support the Naval Surface Warfare Center Philadelphia Division (NSWCPD) Department 40 as contractor staff through Arlo Solutions, serving as a senior cybersecurity compliance specialist providing comprehensive information assurance and Risk Management Framework (RMF) support services for Propulsion, Power & Auxiliary Machinery Systems. This key personnel position focuses on developing, implementing, and maintaining cybersecurity compliance programs and documentation to ensure adherence to Department of Defense (DoD) and Department of Navy (DON) cybersecurity policies and procedures for both afloat and Platform Information Technology (PIT) ashore systems.
Work Location:
Primary:
Philadelphia, PA; periodic travel to customer and operational sites may be required Clearance:
Active Secret security clearance
Job Responsibilities and/or Success Factors Risk Management Framework (RMF) Development and Implementation
* Collect and collate system or site information to evaluate and document security postures in Enterprise Mission Assurance Support Service (eMASS)
* Develop, submit, and maintain RMF packages in accordance with DoD Instruction 8510.01, Naval Sea Systems Command (NAVSEA) Business Rules, DON RMF Process Guides, and NAVSEA Standard Operating Procedures (SOPs)
* Create comprehensive RMF package documentation including Assess Only (AO) Determination Request Packages, System Platform IT (PIT) Determinations, Categorization Forms, Authorization Boundary Diagrams, Defense in Depth Diagrams, Privacy Impact Assessments (PIA), and Security Plans (SPs)
* Develop and maintain Plan of Action and Milestones (POA&M) for all Information Assurance-related tasks and deliverables in eMASS Policy and Compliance Management
* Develop or revise existing policies, plans, and strategy documents to meet requirements for RMF Control Families
* Create comprehensive documentation including Incident Response Plans, Contingency Plans, Information Assurance Vulnerability Management Plans, Configuration Management Plans, and Physical Security Plans
* Ensure all Information Assurance requirements are addressed and compliant with applicable DoD and DON cybersecurity policies
* Evaluate discrepancies and recommend potential mitigation measures for reducing or eliminating specific risks Assessment and Evaluation Activities
* Conduct risk and vulnerability assessments of planned and installed systems to identify vulnerabilities, risks, and protection needs
* Execute Security Assessment Plans (SAPs) by conducting on-site testing for afloat and PIT ashore systems
* Perform systems security reviews, audits, and evaluations to ensure accreditation documents accurately represent current risk posture
* Determine residual risk of packages based on package content and assessment results for Security Controls Assessor review
* Conduct analysis of logs, events, and reporting from various data collection tools including Assured Compliance Assessment Solution (ACAS), Host Based Security Systems (HBSS), Security Information and Event Management (SIEM), firewall systems, and intrusion detection systems Continuous Monitoring and Maintenance
* Support continuous monitoring activities for authorized systems to maintain Authorization to Operate (ATO) status
* Develop and update required eMASS documents at specified frequencies, including POA&Ms and Risk Assessment Reports (RARs)
* Determine system compliance with all applicable…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×