**Job Family** **:**

Cyber Consulting

**Travel Required** **:**

Up to 25%

**Clearance Required** **:**

Ability to Obtain Secret

**What You Will Do** **:**

+ Conduct FISMA security control assessments in accordance with NIST SP 800-53 and NIST SP 800-53A
+ Support system authorization efforts across the RMF lifecycle
+ Perform control testing, interviews, and evidence reviews for management, operational, and technical controls
+ Document assessment results, findings, and risk determinations in SARs and related ATO artifacts
+ Identify control gaps, weaknesses, and POA&M items with clear, actionable remediation guidance
+ Coordinate with system owners, ISSOs, engineers, and program stakeholders during assessments
+ Support continuous monitoring activities, including ongoing control assessments and ad hoc reviews
+ Ensure assessments align with agency-specific cybersecurity compliance and information s...