Navy Qualified Validator ( NQV ) III na Sdatasystems.com

Position: Navy Qualified Validator (NQV) IIILocation: NSWC Philadelphia Division, Philadelphia, PASalary Negotiable - Full time with benefits - Offer contingent upon contract awardThe Naval Surface Warfare Center Philadelphia Division (NSWCPD) is a Department of Defense entity focused on research and development, test and evaluation, engineering, and fleet support for the Navy’s ships, submarines, military watercraft, and unmanned vehicles. SDS seeks an experienced Navy Qualified Validator to support efforts which oversees the Information Technology Operations Division, providing cybersecurity and information assurance support for the Navy Marine Corp Intranet (NMCI) Network and associated Business Systems.

NQV Duties

Meet the Navy Cybersecurity Technical Authority (CSTA) NQV qualification standards, be appointed as an NQV by the Navy Security Control Assessor (SCA) and maintain a passing Proficiency Tracking Record (PTR) score as defined by the CSTA.

Serve as an independent and objective assessor, and extension of the Navy SCA.

Assist with the development and execute Security Assessment Plans (SAP).

Validate security control implementation through on-site and in-person testing, examination, and interviews in support of Risk Assessments and Annual Security Reviews.

Independently review system configurations to determine compliance with applicable STIGs and SRG.

Ensure traceability exists between supporting artifacts.

Verify that all vulnerabilities from raw assessment results are properly documented in the system’s eMASS POA&M.

Provide a summary of non-compliant security controls in Risk Assessment tab in eMASS in accordance with Navy SCA Risk Assessment Guide and the SCA.

Prepare Security Assessment Report (SAR) and SAR Executive Summary based on assessment results and in accordance with NAVSEA SOPs.

Provide risk assessment related technical consultations to Program Managers, Information System Owners, Information System Security Engineers (ISSE), and ISSOs

Required Certifications

This Labor Category requires a baseline certification as outlined in the CSWF table located in Section 12.6.1 (IAM-II)

Must possess Navy Qualified Validator Certification from the Navy Certification Authority (CA) 

Target Education

Bachelor’s degree in computer science, information technology, communications systems management, or an equivalent science, technology, engineering & mathematics (STEM) degree from an accredited college or university.

Target Experience

Ten (10) years’ practical experience in a cybersecurity or A&A related field. Experience should include implementing and/or reviewing RMF lifecycle documentation; ensuring/validating the confidentiality, integrity, and availability of systems, networks, and information; and conducting risk and vulnerability reviews and assessments to ensure accreditation procedures were followed, and documenting non-compliance.

Candidatar-se agora