About Cask

Cask is a woman-owned small business and is certified by the State of California as a Micro Business and by the SBA as an Economically Disadvantaged Woman-Owned Small Business (EDWOSB) and Small Disadvantaged Business (SDB).

Cask was founded in 2004 by a group of professionals who saw the need to help clients use and unlock the value of technology in more efficient, cost-effective ways. Cask delivers business and technology advisory and consulting services to help our customers achieve success.

● Provide information system security engineering support for all assigned GCSS-MC Logistics Information Systems (LIS) and to the LIS product office as part of integrated product teams

● Provide technical knowledge and expertise to support engineering change proposals and change requests by reviewing proposed modifications to system baselines, evaluating cybersecurity impact to design, and writing necessary changes to the product specification to support new capabilities

● Develop and maintain Department of Defense (DoD) Instruction 8510.01 compliant risk management framework (RMF) authorization packages for all assigned systems and applications utilizing the Marine Corps Certification and Accreditation Support Tool (MCCAST)

● Develop the security assessment plans for all assigned systems to include detailing how to test and validate the applicable RMF controls and delivering the final test plan a specified number of days prior to the scheduled self-assessment test event

● Conduct pre-assessments based on the security assessment plans as directed

● Perform technical and non-technical system cybersecurity assessments on assigned systems and document results

● Develop, update, and maintain assigned systems’ and applications’ plans of actions and milestones

● Provide support to the preparation and evaluation of technical documents, papers, studies, analysis, and briefings in support of acquisition of major automated information systems

● Minimum of 5 years of experience in information technology, 3 years of which must have been in the previous 10 years and in direct support of DoD Information Assurance / Cybersecurity

● Demonstrated experience implementing enterprise cybersecurity standards and procedures

● Demonstrated experience executing system specific cybersecurity standards, procedures, and reporting processes

● Demonstrated proficiency in analyzing routine cybersecurity-related technical problems, providing technical support for resolution, and satisfying information security requirements through the application of best practices based on user, policy, regulatory, and resource demands

● Demonstrated experience in supporting vulnerability and risk analyses of computer systems and applications during the system development life-cycle

● Demonstrated knowledge of and experience with implementing the DoD RMF

● Demonstrated ability to work as part of a large and diverse team

● One or more of the following IA certifications (or higher): Certified Authorization Professional (CAP); GIAC Security Leadership Certificate (GSLC); or CompTIA Security+ Continuing Education (Security+ CE)

o Must meet requirements of DoD 8570.01-M Information Assurance Manager(IAM) Level I/ SECNAV-M 5239.2 Entry / Apprentice Proficiency Level

● High School Diploma or Equivalent

Cask is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, among other things, or status a qualified individual with a disability.

EEO/Employer/Vet/Disabled