Information Assurance Analyst, SME (Team Lead) P57
FEDITC · Indianapolis, IN · 5 mo ago
Information TechnologyFull-time
Overview Of Position
FEDITC seeks an Information Assurance (IA) Team Lead to work in Indianapolis, IN area to direct cybersecurity compliance and RMF accreditation operations for the DFAS Common Computing Environment (CCE).
Responsibilities
- Lead and supervise Information Assurance staff delivering RMF compliance and accreditation support for the DFAS CCEDirect Assessment & Authorization (A&A) activities under DoD Risk Management Framework (RMF) using eMASS
- Manage FISMA compliance including annual control testing, documentation, and reporting
- Oversee preparation and maintenance of all RMF artifacts including Security Plans, Control Validations, POA&Ms, and Acceptance of Risk documentation
- Coverage support for FISCAM audits, DFAS internal audits, and SSAE attestations
- Ensure ATO/ATC packages remain current and compliant for all CCE mission systems (cloud and on-premises)
- Direct continuous monitoring activities including vulnerability scan review, patch management compliance, and IAVA tracking
- Lead POA&M management, root cause analysis, and remediation coordination
- Coverage with DFAS CIO validator and ISSM on all RMF actions and compliance requirements
- Develop and maintain IA documentation including policies, procedures, and audit evidence
- Ensure 100% RMF certification maintenance and 95%+ FISCAM control pass rates
Qualifications
- Minimum 10 years of information assurance experience in DoD or Federal environments with increasing responsibility
- Expert knowledge of DoD RMF (DoDI 8510.01), NIST SP 800-37, and NIST SP 800-53 security controls
- Demonstrated experience managing A&A packages in eMASS
- Experience supporting FISMA compliance programs and federal cybersecurity audits (FISCAM, SSAE)
- Strong knowledge of continuous monitoring, vulnerability management, and POA&M processes
- Understanding of DoD IT security policies, DISA STIGs, and compliance frameworks
- Experience coordinating with Authorizing Officials, ISSMs, and security validators
- Proven ability to lead compliance teams and manage multiple concurrent authorization packages
- Ability to support COOP exercises and emergency operations
Preferred Qualifications
- CAP, CASP+, or equivalent RMF certification
- Xacta, Archer, or similar GRC platform experience
- DFAS or DoD financial system RMF/IA experience
Education
- BA/BS Degree
- Computing Environment (CE) certification required for privileged access roles
Certifications
- 722 ISSM
- Advanced certifications (CISSP, CISM, or equivalent)
Clearance
- Active Top Secret/SCI clearance is required.
- Must be a United States Citizen and pass a background check.
- Maintain applicable security clearance(s) at the level required by the client and/or applicable certification(s) as requested by FEDITC and/or required by FEDITC’s Client(s)/Customer(s)/Prime contractor(s).