Cybersecurity Management Specialist Level III

Position Overview

The Cybersecurity Management Specialist Level III will support the U.S. Army Test and Evaluation Command (ATEC) as a contractor through Arlo Solutions, providing subject matter expertise and actionable leadership in supporting the Risk Management Framework (RMF) activities necessary to achieve and maintain Authorization to Operate (ATO) for Army Test and Evaluation Command (ATEC) systems. This position involves interpreting and implementing Department of Defense (DoD) regulatory compliance processes, developing and maintaining required cybersecurity plans and documentation, and acting as a primary contributor in the execution of system assessment activities, incident response, vulnerability management, and risk management.

The ideal candidate independently executes all RMF steps and provides authoritative guidance to system owners and administrators throughout the ATO lifecycle.

Hybrid with on-site requirements;
Aberdeen Proving Ground, MD

Active Secret clearance.

• Execute all tasks required to obtain and maintain authorizations to operate (ATO) for ATEC HQ systems, across connected, standalone, and cloud environments.
• Develop, review, and maintain artifact documentation, including policies, procedures, diagrams, hardware/software inventory, and security plans.
• Register and maintain systems in Enterprise Mission Assurance Support Service (eMASS), managing technical artifacts and documentation for all RMF steps.
• Review and interpret cybersecurity policies and procedures to assure compliance with DoD, Army, and Federal directives, including NIST SP 800-37, NIST SP 800-53, and DoD RMF.

• Oversee the assessment, documentation, and risk analysis of vulnerabilities using established Army and DoD tools and processes.
• Develop, track, and update Plans of Action and Milestones (POA&Ms) for vulnerabilities, supporting remediation and risk acceptance activities as needed.
• Participate in and support security assessments, risk management, and incident response efforts in close collaboration with system administrators and security leads.

• Provide subject matter expertise to system owners, administrators, and broader technical teams on execution and interpretation of RMF and cybersecurity requirements.
• Facilitate the preparation, review, and accurate submission of RMF artifacts, ensuring all deliverables meet timelines and quality benchmarks.
• Support and guide junior technical staff and act as a resource in compliance, documentation, and audit response activities.
• Regularly communicate status, results, and risks to government customers and leadership.

• Prepare, maintain, and review all required security documentation, including risk assessments, incident reports, security plans, and compliance status deliverables.
• Ensure all documentation and reporting are accurate, complete, and delivered on schedule, supporting continuous monitoring and security posture maintenance as required by Army contracts.
• Ensure ongoing compliance with privileged access controls and maintain appropriate professional certifications as specified in DoD 8140/8570 and Army policy.

• Must be a U.S. Citizen
• Must have an Active Secret Clearance
• Education/
  
  Experience:
  • No degree or any degree in a non-directly related field with technical certifications and at least 7 years of relevant experience; or
  • Bachelor’s Degree in a directly related field and at least 5 years of relevant experience
• Relevant experience must be in Information Security or Network/System Administration, with demonstrated expertise in RMF and DoD regulatory compliance, including the ability to execute all steps of the RMF process independently.
• Demonstrated experience as a subject matter expert in developing cybersecurity plans, policies, and procedures, supporting incident response, performing security assessments, and conducting risk management activities.
• Must possess one of the following professional…