Responsible for ensuring classified systems follow government and ARL regulations while meeting program demands and operating in an accredited state. Assist in daily IT governance, risk management, and compliance function. Providing oversight of compliance assurance, for the daily administration of information security measures in compliance with the NISPOM, DAAPM, JSIG, DISA, and other relevant system security requirements to include those under the Risk Management Framework (RMF). Responsible for assisting in ensuring that classified information systems meet the Risk Management Framework requirements for National Security computing environments as defined by the National Institute of Standards and Technology 800-Series, the Defense Counterintelligence and Security Agency Assessment and Authorization Process Manual, the Joint Special Access Program Implementation Guide (JSIG), and other governing bodies. Conducting continuous monitoring reviews, and self-assessments of classified information systems and their applicable security controls to ensure both government and ARL policy compliance.Assist in updating, and maintaining system level Plan of Action and Milestones (POAandM) through compliance checks, STIG and SCAP reviews, and Nessus Scanning.Responsible for drafting detailed reports of compliance and self-inspections outcomes, for upper management review.Other related functions as assigned.
S:SKCIN SKINTIAGP2