Security / RMF Lead
E-Logic, Inc. · Atlanta, GA · 1 mo ago
RemoteRemoteInformation Technology$85k/yrFull-time
Key Responsibilities
- Ensure full system compliance with the NIST Risk Management Framework (RMF), FISMA obligations, FIPS, and HHS/CDC policies.
- Author and maintain critical security lifecycle documentation, including System Security Plans (SSPs), POA&Ms, and full Authorization to Operate (ATO) packages.
- Career coordination software assurance scans (e.g., Fortify), remediate vulnerabilities, and manage continuous monitoring (ISCM) activities using CSAM/eMASS.
- Support Privacy Threshold Analyses (PTAs) and Privacy Impact Assessments (PIAs). Partner with the CDC CSIRC to mitigate security or privacy breaches within mandated federal timelines.
- Advise cross-functional teams (Data Scientists, Developers, Architects) on secure systems engineering practices (NIST SP 800-160) to eliminate architectural risks.
Minimum Qualifications
- Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, or a related field.
- Experience of 6+ years of federal information security experience heavily focused on applying the NIST RMF framework.
- Hands-on experience developing SSPs/POA&Ms and utilizing federal security management tools like CSAM or eMASS.
- Certifications: CISSP, CISM, or CAP are highly preferred.
- Position requires U.S. Citizenship to obtain a Public Trust determination.