Lead ISSE (RMF)

December 8, 2025

Full-time
Suffolk VA
Posted 15 minutes ago

TECHEAD

To Apply for this Job Click Here

Always Connecting, Always Evolving.

TECHEAD is seeking qualified applicants for the following Full-Time position – Lead ISSE (RMF) / Suffolk VA – (JOB-21947). If you are looking for a new opportunity and this position looks to be a fit, please apply to see the TECHEAD difference that has made us successful for 30+ years!

You can find more about our team and values by checking us out at TECHEAD.com or on Glassdoor

Job Description:

Location: Suffolk, VA Clearance: Top Secret Certification: IAT Level III (e.g., CISSP, CASP CE)

Summary

Seeking a Risk Management Framework (RMF) Subject Matter Expert (SME) to lead all Assessment and Authorization (A&A) accreditation efforts for the Deputy Directorate, Joint Training (DDJT). This role requires deep expertise in DoD RMF policies, NIST 800-53 controls, and the use of the eMASS system to ensure system security compliance.

Key Responsibilities & Deliverables

RMF & eMASS Leadership: Serve as the primary SME for DoD RMF, leading the A&A lifecycle, and utilizing eMASS to document activities, implement security controls, and manage accreditation tasks.
Control Implementation: Apply, tailor, and test security controls per NIST SP 800-53 and CNSSI 1253 categorization, including the application of necessary overlays (e.g., privacy, classified).
Security Documentation: Develop, maintain, and finalize all required A&A documentation, including the System Security Plan (SSP), Security Assessment Plan (SAP), and Security Assessment Reports (SARs).
POA&M Management: Conduct active and passive reconnaissance to identify vulnerabilities, assess risk, and author accurate Plans of Milestones and Actions (POA&Ms) with verifiable mitigation statements and tracking.
Compliance Scheduling: Adhere to the eMASS schedule, completing tasks like Quarterly Independent Verification and Validation (IV&V), Annual Security Review (ASR), monthly POA&M updates, and timely resubmission for ATO/ATC/IATT.
Stakeholder Collaboration: Partner with System Owners, developers, and team leads to integrate security requirements throughout system design and implementation.
System Maintenance: Manage DISA circuit connections (CCSDs) and inheritance documentation from accredited systems/cloud providers.

Required Qualifications

Experience: Master’s degree in Cybersecurity (or related) AND 5+ years of experience with DoD RMF, A&A, and cybersecurity policies.
- Alternatively: 10 years of experience in cybersecurity analysis with a strong understanding of applicable laws and regulations.
Certifications (Required Prior to Start):
- IAT Level III Certification (e.g., CISSP, CASP CE, CISA, GCED, GCIH).
- DISA eMASS Computer Based Training certificate.
- Annual Cyber Awareness Training certificate.

TECHEAD’s mission is to make our on-site associates successful by placing them in the right environment so they can grow and prosper. How we treat and respond to our clients and employees is a reflection of who we are and makes us stand out from the rest. Keeping our business focused on building and maintaining relationships with our employees and clients is the key to our success. We won’t strive for anything less.

TECHEAD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

For more information on TECHEAD please visit www.techead.com.

No second parties will be accepted.