About the Role
ROLE
The ideal candidate will provide leadership in designing, assessing, and implementing security controls across complex systems, ensuring compliance with DoD standards and the confidentiality, integrity, and availability of required systems.
RESPONSIBILITIES
• Lead the implementation of administrative, physical, and technical security controls across the portfolio, ensuring compliance with DoD RMF requirements.
• Conduct independent security assessments and testing to identify risks, recommend mitigation strategies, and ensure continuous compliance.
• Manage the Plan of Action and Milestones (POAM) process, documenting mitigations and overseeing their resolution within defined timelines.
• Serve as a technical advisor for RMF controls implementation, collaborating with the Information System Security Manager (ISSM) to maintain eMASS records.
• Perform Independent Verification and Validation (IV&V) testing and report on findings, including compliance with RMF and continuous monitoring requirements.
• Lead risk assessments for third-party systems, evaluating vulnerabilities and proposing actionable remediation strategies to protect the IT systems.
• Oversee system security scans and vulnerability assessments, ensuring compliance with DoD cybersecurity policies.
• Define and maintain security standards, policies, and procedures, ensuring they are operationally effective and meet program requirements.
• Provide guidance on incident response investigations, identifying opportunities for improvement in incident handling and mitigation efforts.
• Collaborate with stakeholders to implement and monitor security safeguards using cutting-edge technologies, such as encryption, remote access, and antivirus systems.
Requirements
REQUIRED SKILLS/EXPERIENCE
· Deep knowledge of DoD RMF, including security assessment and testing, identity and access management, and security engineering.
· Proficiency in eMASS and the ability to manage security documentation and compliance records.
· Strong understanding of the 8 domains of information security, including: Security & Risk Management, Security Assessment and Testing, Communications and Network Security, Software Development Security.
REQUIRED EDUCATION / CERTIFICATIONS
· Bachelor’s degree in Cybersecurity, Computer Science, or a related discipline.
· IASAE II DoD Approved Baseline Certification (e.g., CISSP, CASP CE, CSSLP).
DESIRED EDUCATION / CERTIFICATION
· Education: Master’s degree or higher in a related field.
· SAFe Agile Practitioner certification.
· AWS Certified Cloud Practitioner (CCP) to demonstrate knowledge of securing cloud environments.
· Expertise in cloud security, including designing and implementing controls in AWS environments.
· Experience presenting complex technical information to senior military leadership.
LOCATION
· Newport News, VA
CLEARANCE
· Active Secret Clearance Required
TRAVEL
· Travel may be required
About the Company
Our employees work for Revolve because Revolve works for them.
Team Member Benefits:
Revolve offers much more than competitive pay and benefits. We provide the opportunity for you to become a part of something bigger. An innovative way of doing business where teamwork is encouraged, camaraderie is fostered and a genuine partnership with each client is instilled.
Revolve is an organization that is only as successful as the people behind it. Which is why we promote individual growth through collaboration and mentoring to help you reach your career goals.
Cultural Values:
- Drive innovation
- Invest in our employees
- Work/life balance
- Celebrate growth
- Promote collaboration
- Focus on outcomes
- Anticipate clients’ needs
- Corporate citizenship
To submit your resume or for more information please email Taylor@revolvesolutions.com