Broadleaf, Inc has been featured as one of Inc. Magazine's "Top 5000 fastest growing companies". Broadleaf, Inc has established itself as #20 (2021) D.C. Metro, from #146 (2020), #733 (2019), and #1730 (2018).  Broadleaf, Inc is also ranked #393 (2021) in the U.S. by Inc.com. www.inc.com/profile/broadleaf

Founded in 2009 and headquartered in Virginia, Broadleaf is a Native Hawaiian Organization (NHO) owned small business. We are a mature 8(a) firm who has achieved Capability Maturity Model Integration (CMMI) Level 3 for Development, CMMI Level 3 for Services, and ISO 9001, ISO 27001, and ISO 14001 certifications. These quality improvement programs directly influence our management and technical solutions.
Unlike other small businesses, our certifications prove that we have mature processes and procedures which will be used to deliver a high-quality service to our clients.
​
What is an NHO?
Native Hawaiian Organization or NHO is a community service organization serving Native Hawaiians in the State of Hawaii which is a not-for-profit organization chartered by the State of Hawaii, is controlled by Native Hawaiians, and whose business activities will principally benefit such Native Hawaiians.

Our NHO’s Mission
NHO is a non-profit organization designed to benefit the Hawaii people through the development and advocacy of Science, Technology, Engineering and Math (STEM) education and by promoting Hawaii’s role as America’s Gateway to the Pacific.
Our NHO supports this missions through an agenda that facilitates community resilience, development, economic prosperity, and strengthens Hawaii’s relationships with its Asia-Pacific neighbors.

JOB DESCRIPTION:

• DCSA requires ISSE support in order to maintain IT infrastructure, applications, and any new development projects with ensuring the security efficacy of networks. As such, technical analysis, research, evaluation, and technical guidelines shall be performed in order to accomplish the needed support. The workload for ISSE will vary depending on the number of active development projects, the RMF governance tier level, and other technical evaluations required by DCSA.

JOB DUTIES:

• Will work closely with the client to develop and maintain a SharePoint website utilizing SharePoint Designer, HTML, CSS, JavaScript, jQuery, Nintex and REST calls to facilitate and automate better business processes and knowledge management.

BASIC QUALIFICATIONS:

• Three (3) Years- Cybersecurity experience


• A strong SharePoint Designer is the key skillset, but applicant must have ISSE qualifications


• Knowledge of Risk Management Framework (RMF), STIGs and eMASS or similar e.g. Xacta or CSAM


• Knowledge of DoD, NIST, Cloud, DISA, and other applicable Cybersecurity Policies, Procedures, and best practices


• Two (2)-Three (3) years hands on experience with eMASS or other similar compliance system, entering packages, managing POA&Ms, running reports, etc.


• Must have experience as an RMF/A&A team lead or significant contributor, preferred if a technical advisor in a certain system or technology, i.e., networking, AWS cloud, servers, etc.


• Experience/Education to serve as a senior engineer level technical advisor to the RMF process.


• Demonstrated experience with research and analysis of Commercial-Off-The-Shelf (COTS) and Government-Off-The-Shelf (GOTS) and IA-enabled products as part of the security architecture and ensure products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) compliant and validated via the NIAP Common Criteria Evaluation and Validation Scheme or NIST Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMVP).


• Sufficient experience designing IT system architecture and solutions for a mid to large enterprise with both local and remote connection requirements.


• Ability to assess current infrastructure and architecture and make recommendations for improvement, expansions, and device/software lifecycle management.


• Be able to maintain TS/SCI clearance and access to required commercial and/or DoD systems including NIPRNet, SIPRNet, and JWICS


• Liaise with internal and external partners at all levels, government and private sector, in order to benefit the organization.

EDUCATION REQUIREMENTS:

• Associates or bachelor’s degree, in Cybersecurity, and/or Information Systems Management or equivalent experience

CLEARANCE LEVEL:

• Secret Security Clearance

CERTIFICATION(S):

• 8570 IAM/IAT Level II required (e.g., CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP, CCNA Security, CySA+, GICSP, Securtiy+ CE, CND or SSCP)

WORK ENVIRONMENT AND PHYSICAL DEMANDS: 

• This is a partial Telework position.


• If alternate worksite is other than DCSA facilities or corporate office space, must have the reliable ability to communicate over voice (cell phone preferred) and stable, capable internet connection.


• Must speak English well enough to communicate complex technical ideas to a diverse customer both verbally and in written form.

BASIC QUALIFICATIONS:

• Three (3) Years- Cybersecurity experience


• A strong SharePoint Designer is the key skillset, but applicant must have ISSE qualifications


• Knowledge of Risk Management Framework (RMF), STIGs and eMASS or similar e.g. Xacta or CSAM


• Knowledge of DoD, NIST, Cloud, DISA, and other applicable Cybersecurity Policies, Procedures, and best practices


• Two (2)-Three (3) years hands on experience with eMASS or other similar compliance system, entering packages, managing POA&Ms, running reports, etc.


• Must have experience as an RMF/A&A team lead or significant contributor, preferred if a technical advisor in a certain system or technology, i.e., networking, AWS cloud, servers, etc.


• Experience/Education to serve as a senior engineer level technical advisor to the RMF process.


• Demonstrated experience with research and analysis of Commercial-Off-The-Shelf (COTS) and Government-Off-The-Shelf (GOTS) and IA-enabled products as part of the security architecture and ensure products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) compliant and validated via the NIAP Common Criteria Evaluation and Validation Scheme or NIST Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMVP).


• Sufficient experience designing IT system architecture and solutions for a mid to large enterprise with both local and remote connection requirements.


• Ability to assess current infrastructure and architecture and make recommendations for improvement, expansions, and device/software lifecycle management.


• Be able to maintain TS/SCI clearance and access to required commercial and/or DoD systems including NIPRNet, SIPRNet, and JWICS


• Liaise with internal and external partners at all levels, government and private sector, in order to benefit the organization.

EDUCATION REQUIREMENTS:

• Associates or bachelor’s degree, in Cybersecurity, and/or Information Systems Management or equivalent experience

CLEARANCE LEVEL:

• Secret Security Clearance

CERTIFICATION(S):

• 8570 IAM/IAT Level II required (e.g., CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP, CCNA Security, CySA+, GICSP, Securtiy+ CE, CND or SSCP)

BENEFITS:

• Health, Dental, Vision, 401K Matching, AD&D Insurance

EEO Employer F/M/Vet/Disabled