RMF Analyst III Security Clearance

Position: RMF Analyst III with Security Clearance
Summary RMF Analyst III Huntsville, AL Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer's core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level!

Chronos Operations (CO) is a wholly-owned subsidiary of Chenega Corporation, an Alaska Native Corporation based in Anchorage, AK. Belonging to the Military, Intelligence, and Operations Support (MIOS) Strategic Business Unit (SBU), Chronos has a culture rooted in integrity, respect, and exceptional performance. Chronos is headquartered in Colorado Springs, CO, and provides mission-critical services in Advanced Analytics & AI, Software Engineering, Cybersecurity, Information Technology, and Intelligence.

Chronos Operations, LLC is seeking an experienced RMF Analyst III to provide oversight and resources needed to execute the contract requirements for the Army Materiel Command (AMC), Chief Information Office (CIO), across a wide range of cybersecurity tasks. The RMF Analyst III conducts mid-level RMF analysis, System Security Plan development, and A&A coordination. Responsibilities
* Assist Senior RMF practitioner managing ATO packages, continuous monitoring plans, and eMASS documentation.
* Deep understanding of cybersecurity frameworks, documentation, and technical validation processes, working closely with stakeholders and control assessors to ensure security and compliance.
* Provide weekly reporting to the senior task lead.
* Assist in the optimization of the current process to streamline the approval process with the Program Information Security System Manager (P-ISSM) prior to submissions to the Authorizing Official (AO).
* Track timely and high-quality completion of process tasks and milestones, and report on the status of key milestones to the senior task lead.
* Assist with overseeing the cybersecurity lifecycle from inception to completion.
* Develop, review, and update documentation to ensure compliance with RMF and Continuous Monitoring requirements.
* Evaluate and validate technical processes related to ATO (Authority to Operate) requirements, ensuring alignment with cybersecurity standards.
* Assisting in the preparation and review of authorization information and documentation for RMF and Continuous Monitoring.
* Assist with eMASS package completion and maintenance, including artifacts, self-assessments, and asset management.
* Review project schedules, requirements, and risk assessments, offering recommendations to program stakeholders to enhance security posture.
* Develop security plans, as well as assessment reports, plans of action, and milestones for remediation. Defines criticality or sensitivity of systems, performs categorization calculations, and recommends corrective action.
* Recommend baseline security controls, assess changes in controls, and coordinate changes to security authorizations.
* Conduct evaluations to verify that design and implementation meet requirements.
* Confirm that all necessary supporting documents (e.g., Incident Response Plan, Configuration Management Plan, Contingency Plan) are present, complete, and have been reviewed and approved.
* Confirm that every finding is identified and tracked in the POA&M. Ensure each POA&M item has a realistic mitigation strategy, defined resources, and a scheduled completion date.
* Prepare test plans and conduct security control testing IAW with NIST SP800-53, DoDI 8510.01, NIST SP 800-37 Rev. 2
* Supervisory duties as assigned.
* Other duties as assigned. Qualifications
* High school diploma or GED equivalent is required.
* 5+ years of experience in Cybersecurity compliance/Risk Management Framework.
* 5+ years of experience with RMF (NIST SP800-53, NIST SP 800-37 DoDI 8510.01), ATO packages, POA&M development, and system categorization is required.
* 3+ years' experience supporting DoD or federal programs is highly…