IT Security Audit SME
About The Position
AnaVation is seeking a prevailing authority in Federal IT Security Audits. The ideal candidate must have an active Top Secret clearance and extensive experience leading and coordinating enterprise-level cybersecurity audits on behalf of large Federal agencies. We are open to full-time or part-time consultative support for the right candidate. What you will be doing Serve as the top resident expert regarding all of the following: FISMA, NIST, FedRAMP, FISCAM, CyberScope, OMB, CNSS, ICD, and cybersecurity-related EOs, BODs, and related memoranda. Interface with clientâs senior-most leadership, including briefings up to and including Cabinet-level appointees under the current administration. Advise the client to assure attainment of minimum âManaged and Measurable (4)â but preferably âOptimized (5)â maturity levels across all audited categories for all selected systems during the Departmentâs annual FISMA audit. Lead the audit on behalf of the Department. Brief results to executive-level personnel and recommend ways to increase maturity levels in future audits. Advise the client and team regarding collection of quarterly and annual FISMA CIO metrics. Prepare, deliver, and brief results. Make recommendations for improvement. Must have the ability to work in a dynamic environment and adapt to changing conditions. Must possess a high degree of originality, creativity, and initiative requiring no direct supervision.
Requirements
- Active CISSP or CISA certification
- 15+ years leading FISMA OIG, IRS, GAO, and FISCAM audits at the enterprise level
- Active Top Secret clearance
- Direct experience advising Federal working groups to offer expert advice regarding cybersecurity policy requirements, guidance, and metrics.
Nice To Haves
- Experience participating in classified DoD audits (e.g., CCRI, CDNSP)
- Bachelorâs Degree or higher in a cybersecurity or government policy-related field
Responsibilities
- Serve as the top resident expert regarding all of the following: FISMA, NIST, FedRAMP, FISCAM, CyberScope, OMB, CNSS, ICD, and cybersecurity-related EOs, BODs, and related memoranda.
- Interface with clientâs senior-most leadership, including briefings up to and including Cabinet-level appointees under the current administration.
- Advise the client to assure attainment of minimum âManaged and Measurable (4)â but preferably âOptimized (5)â maturity levels across all audited categories for all selected systems during the Departmentâs annual FISMA audit.
- Lead the audit on behalf of the Department.
- Brief results to executive-level personnel and recommend ways to increase maturity levels in future audits.
- Advise the client and team regarding collection of quarterly and annual FISMA CIO metrics.
- Prepare, deliver, and brief results.
- Make recommendations for improvement.
- Must have the ability to work in a dynamic environment and adapt to changing conditions.
- Must possess a high degree of originality, creativity, and initiative requiring no direct supervision.
Benefits
- Generous cost sharing for medical insurance for the employee and dependents
- 100% company paid dental insurance for employees and dependents
- 100% company paid long-term and short-term disability insurance
- 100% company paid vision insurance for employees and dependents
- 401k plan with generous match and 100% immediate vesting
- Competitive Pay
- Generous paid leave and holiday package
- Tuition and training reimbursement
- Life and AD&D Insurance
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
11-50 employees
