RMF and Cybersecurity Lead
Anaesthesia Associates of Massachusetts, P.C., O'Fallon, IL, United States
Overview
Amyx is seeking to hire a RMF and Cybersecurity Lead to join our Defense client in O'Fallon, IL.
Responsibilities
This position will supports RMF compliance, cybersecurity operations, and continuous monitoring.
Primary Responsibilities will include:
Develops and maintains RMF artifacts (ATO/ATC, POA&Ms).
Supports vulnerability management and security audits.
Provides cybersecurity reporting and metrics.
Must be experience in RMF compliance & documentation: develop/maintain documentation to obtain ATO/ATC; identify evidence/artifacts for A&A packages; manage RMF artifacts (risk acceptance memos, POA&Ms, etc.); update security documentation in eMASS or Government-selected tools; provide A&A metrics.
Continuous monitoring & vulnerability management: upload code/security scans/checklists; document AP/CCI mappings; track POA&Ms; audit POA&M items; validate privileged user accounts as needed.
Compliance auditing & PPSM: support PPSM registry activities; ensure declared PPSMs follow applicable instructions; support internal/external security audits (including financial/privacy audits).
Cybersecurity operations: log analysis; support control audits/assessments; assess security control effectiveness; develop metrics and security posture reporting; support change management review for security impacts.
Incident reporting awareness: align reporting actions with DFARS 252.204
Must have the ability to communicate accurate information
Qualifications Desired:
Secret Clearance.
Must have one CE cert/certificate aligned to OS/tools/devices supported (categories include OS, network support/defense, cloud/virtualization, applications, etc.)
Required:
Experience supporting USTRANSCOM and working on at USTC.
Experience supporting DoD.
Demonstrated experience producing recurring cybersecurity deliverables (POA&M status, compliance reports, hygiene/scorecards, risk assessments)
Familiarity with NIST 800‑171 SSP expectations (contractor System Security Plan requirement).
Benefits include:
Medical, Dental, and Vision Plans (PPO & HSA options available)
Flexible Spending Accounts (Health Care & Dependent Care FSA)
Health Savings Account (HSA)
401(k) with matching contributions
Roth
Qualified Transportation Expense with matching contributions
Short Term Disability
Long Term Disability
Life and Accidental Death & Dismemberment
Basic & Voluntary Life Insurance
Wellness Program
PTO
11 Holidays
Professional Development Reimbursement
Please contact talent@amyx.com with any questions!
Amyx is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sexual orientation, gender identity, status as a protected veteran, or any other characteristic protected by law. Amyx is a VEVRAA federal contractor and we request priority referral of veterans.
Physical Demands Employee needs to be able to sit at a workstation for extended periods; use hand(s) to handle or feel objects, tools, or controls; reach with hands and arms; talk and hear. Most positions require ability to work on desktop or laptop computer for extended periods of time reading, reviewing/analyzing information, and providing recommendations, summaries and/or reports in written format. Must be able to effectively communicate with others verbally and in writing. Employee may be required to occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Regular and predictable attendance is essential.
#J-18808-Ljbffr
Responsibilities
This position will supports RMF compliance, cybersecurity operations, and continuous monitoring.
Primary Responsibilities will include:
Develops and maintains RMF artifacts (ATO/ATC, POA&Ms).
Supports vulnerability management and security audits.
Provides cybersecurity reporting and metrics.
Must be experience in RMF compliance & documentation: develop/maintain documentation to obtain ATO/ATC; identify evidence/artifacts for A&A packages; manage RMF artifacts (risk acceptance memos, POA&Ms, etc.); update security documentation in eMASS or Government-selected tools; provide A&A metrics.
Continuous monitoring & vulnerability management: upload code/security scans/checklists; document AP/CCI mappings; track POA&Ms; audit POA&M items; validate privileged user accounts as needed.
Compliance auditing & PPSM: support PPSM registry activities; ensure declared PPSMs follow applicable instructions; support internal/external security audits (including financial/privacy audits).
Cybersecurity operations: log analysis; support control audits/assessments; assess security control effectiveness; develop metrics and security posture reporting; support change management review for security impacts.
Incident reporting awareness: align reporting actions with DFARS 252.204
Must have the ability to communicate accurate information
Qualifications Desired:
Secret Clearance.
Must have one CE cert/certificate aligned to OS/tools/devices supported (categories include OS, network support/defense, cloud/virtualization, applications, etc.)
Required:
Experience supporting USTRANSCOM and working on at USTC.
Experience supporting DoD.
Demonstrated experience producing recurring cybersecurity deliverables (POA&M status, compliance reports, hygiene/scorecards, risk assessments)
Familiarity with NIST 800‑171 SSP expectations (contractor System Security Plan requirement).
Benefits include:
Medical, Dental, and Vision Plans (PPO & HSA options available)
Flexible Spending Accounts (Health Care & Dependent Care FSA)
Health Savings Account (HSA)
401(k) with matching contributions
Roth
Qualified Transportation Expense with matching contributions
Short Term Disability
Long Term Disability
Life and Accidental Death & Dismemberment
Basic & Voluntary Life Insurance
Wellness Program
PTO
11 Holidays
Professional Development Reimbursement
Please contact talent@amyx.com with any questions!
Amyx is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sexual orientation, gender identity, status as a protected veteran, or any other characteristic protected by law. Amyx is a VEVRAA federal contractor and we request priority referral of veterans.
Physical Demands Employee needs to be able to sit at a workstation for extended periods; use hand(s) to handle or feel objects, tools, or controls; reach with hands and arms; talk and hear. Most positions require ability to work on desktop or laptop computer for extended periods of time reading, reviewing/analyzing information, and providing recommendations, summaries and/or reports in written format. Must be able to effectively communicate with others verbally and in writing. Employee may be required to occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Regular and predictable attendance is essential.
#J-18808-Ljbffr