Cyber Information Assurance/Security Specialist Lead

About The Position

Requirements

• Master of Science in Information Management Systems or related field.
• Minimum of 7 years of experience in IT and cybersecurity.
• Certifications: Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA)
• Minimum of 3 years of experience supporting an Information Security program within a Federal Agency.
• Hands-on experience with: FISMA, FedRAMP, FIPS, and NIST SP 800-series Risk Management Framework (RMF) NIST Cybersecurity Framework (CSF) Security Assessment & Authorization (SA&A / A&A) processes Federal security compliance and reporting RSA Archer eGRC or similar GRC platforms
• Ability to translate technical system requirements into actionable, risk-based security guidance.
• Strong communication, analytical, and stakeholder management skills.
• Clearance: Secret

Nice To Haves

• Experience coordinating with senior federal security officials (AOs, ISSOs, CISOs).
• Knowledge of cloud security, modernization efforts, and FedRAMP-authorized services.
• Experience leading or mentoring security analysts, engineers, and compliance specialists.
• Certification: Project Management Professional (PMP)

Responsibilities

• Lead the planning, execution, and continuous improvement of federal information security programs.
• Provide expert guidance on compliance with FISMA, FedRAMP, FIPS, and NIST Special Publications.
• Manage security assessment and authorization (A&A) activities, including documentation, testing, reporting, and authorization package development.
• Oversee the implementation and operationalization of the Risk Management Framework (RMF) and the NIST Cybersecurity Framework (CSF) across systems and services.
• Manage IT Governance, Risk, and Compliance (GRC) programs to support enterprise security posture.
• Utilize the RSA Archer eGRC tool to maintain risk registers, track compliance status, manage POA&Ms, and support audit readiness.
• Translate technical requirements from system engineers and developers into actionable, data-driven, and risk-based security recommendations.
• Evaluate and analyze security controls to ensure alignment with federal standards and organizational risk tolerances.
• Build and sustain strong working relationships with: System Owners Information System Security Officers (ISSOs) Authorizing Officials (AOs) Chief Information Security Officers (CISOs)
• Serve as a senior advisor to leadership and stakeholders on cybersecurity risk, compliance needs, and mitigation strategies.
• Facilitate briefings, security reviews, and status updates for executive and technical audiences.
• Coordinate and lead security reviews, risk assessments, and audits to ensure compliance with federal cybersecurity policies.
• Support the development and maintenance of security documentation, including SSPs, SARs, RARs, and POA&Ms.
• Identify gaps in security controls, recommend improvements, and oversee the implementation of corrective actions.
• Provide mentorship and direction to junior analysts and security staff.

Benefits

• Employee Ownership : Your contributions directly impact the company’s success, and you share in its achievements.
• Continuous Learning : Access to resources, training, and mentorship to support your professional growth.
• Inclusive Culture : A workplace where diversity is celebrated, and everyone’s voice is valued.
• Mission-Driven Work : Engage in projects that make a meaningful difference for our clients and communities.