DAO Representative

Position Description:

The Delegated Authorizing Official Representative (DAO-R) Senior Technical Specialist provides support to the customer in the area of Cyber Security. Daily tasks include, but are not limited to:

• Ensure adherence to ICD-503 and customer specific directives/policies through the lifecycle (RMF 1-6) of customer sponsored assets
• Provide risk recommendations to the customer after reviewing sponsored asset overall risk posture as part of Authority to Operate (ATO) RMF process
• Manage/track customer sponsored assets’ plan of action and milestones (POAMs) by working with various security stakeholders (ISSO/ISSE/ISSM/SCA) post authorization
• Screen new asset requests to ensure sponsorship and information system owner identification
• Facilitate System Review Team to ensure that new/existing customer sponsored assets have the correct project regulation, data types/C-I-A impact assignments, and overlay assignments as well (with customer signoff)
• Assign asset security controls and levy asset specific liens on controls for which the program did not meet during accreditor reviews
• Ensure customer sponsored assets maintain their security postures in accordance with customer identified Continuous Monitoring (RMF step 6) directives and policies
• Provide continuous adhoc authorization-related daily support to both customer and programs

Required Qualifications:

• Current U.S. Government Top Secret clearance/SCI with Poly
• An advanced cyber certification (CISSP, CASP, CISM, or CISA)
• At least 5 years of demonstrated experience in designing and fielding IT solutions (e.g. Active Directory design, architecting VPM solutions, software defined networks)
• Demonstrated expertise and experience in networking protocols and concepts
• Demonstrated knowledge and experience in cloud and software defined networking principles and technologies
• Demonstrated expertise and experience in the NIST SP 800 Series
• Demonstrated expertise and experience in cyber security principles
• Demonstrated expertise and experience in preforming contextual cyber risk assessments
• At least 5 years of experience in some combination of the following information Security/Information Assurance areas:

• Security Control Assessment (SCA)
• Amazon Cloud Services Architect/Security
• Information Systems/Security Engineering
• Risk Assessment/Analysis

• Demonstrated expertise in ICD 503 RMF Implementation in the IC/DoD
• Excellent communication skills – Verbal and Non-Verbal
• Demonstrated experience in one or more roles as ISSM, ISSO, ISSE, DAO, DAO-R or SCA
• Office Automation Skills – MS Office, MS Project, Visio

Desired Qualifications:

• Self-starter requiring limited direction and supervision
• B.S. or M.S. in STEM
• An advanced cyber certification (CISSP-ISSMP, or CCSP)
• Experience in Systems Engineering/Architecture
• Department or Team Lead experience
• Expert in ICD 503 RMF Implementation in the IC/DoD
• Cloud transition, cloud systems experience
• Experience briefing senior customer personnel
• Ability to organize and prioritize numerous customer requests in a fast pace deadline driven environment
• Familiarity with Amazon Web Services (AWS)
• Familiarity with customer's IA processes
• Experience with Xacta
• Familiarity with Cross Domain Systems (CDS)