FISMA SME

About The Position

Requirements

• Bachelor's degree (IT-related field preferred)
• Ten (10) years of relevant experience in a cybersecurity or information assurance roles.
• At least three (3) years directly supporting FISMA compliance, security controls, or federal reporting initiatives
• Must have an active DoD Secret clearance
• DoD 8570 IAT Level III certification
• Deep understanding of FISMA (Federal Information Security Modernization Act) requirements
• Deep understanding of NIST Cybersecurity Frameworks, especially SP 800-53, 800-37, 800-137, and 800-171
• Experience supporting FISMA scorecard metrics, Agency-level compliance tracking, and Inspector General (IG) audits
• Proficiency with compliance dashboards, data visualization tools, or enterprise reporting systems
• Demonstrated ability to develop and maintain cybersecurity compliance documentation
• Demonstrated ability to prepare and deliver FISMA reports, internal scorecards, and briefings to stakeholders
• Excellent written and verbal communication for technical documentation and stakeholder engagement

Responsibilities

• Apply knowledge of federal and DoD cybersecurity policies, RMF, and FISMA requirements to analyze cybersecurity data and support compliance efforts.
• Monitor changes in FISMA reporting requirements and tools and communicate updates to the CIO FISMA lead.
• Respond to cybersecurity-related inquiries and RFIs within one business day, providing technical and compliance input or coordinating responses.
• Collect, analyze, and interpret cybersecurity data to assess agency FISMA and policy compliance, including areas like asset inventory, system authorization, endpoint security, configuration, patching, and cyber training.
• Prepare and deliver weekly internal scorecard briefs; support development of an automated compliance dashboard.
• Coordinate with PMs to integrate 8140 compliance, STIG, IAVM, and PKI data into scorecard briefs.
• Collaborate with stakeholders to address compliance issues, offer guidance, and recommend solutions to resolve system or network-level concerns.
• Report cybersecurity issues affecting posture or reporting to the FISMA Government lead.
• Participate in weekly FISMA meetings, bi-weekly CIO staff meetings, and Pre-CISO working groups; provide updates, briefings, and capture action items relevant to compliance.

Benefits

• 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays.
• Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results.
• 401(k) with Match: We match 3% of your contributions with immediate vesting.
• Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
• Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options.
• Parental Leave: 15 days of fully paid leave for new parents.
• Military Differential Pay: We bridge the gap for employees on active duty.
• Professional Growth: Paid training and certifications, tuition reimbursement.
• Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees.