Lead ATO Subject Matter Expert (Cybersecurity Analyst III)
About The Position
Creative Visions is seeking a Lead ATO Subject Matter Expert to support enterprise cybersecurity authorization activities for a federal law enforcement customer. This role leads Assessment & Authorization (A&A), Risk Management Framework (RMF), and Authority to Operate (ATO) efforts across classified and unclassified systems supporting mission-critical operations. The selected candidate will serve as a senior cybersecurity advisor responsible for guiding system owners, ISSOs, engineers, and leadership through the full RMF lifecycle while ensuring compliance with DOJ, NIST, FISMA, and federal cybersecurity requirements. Creative Visions is actively pursuing this federal opportunity. Positions associated with this effort are contingent upon contract award, funding availability, and government approval of proposed personnel. Selected candidates may receive contingent offers of employment pending award and successful completion of applicable clearance and suitability requirements.
Requirements
- 10 years of experience in IT Project Management in both Waterfall and Agile environments.
- 10 years of experience performing systems security assessments, preparing system security documentation, and/or performing security upgrades for live networks, desktop systems, servers, and enterprise data bases leading to successful certification and accreditation or security authorization of such systems.
- 10 years of experience assessing and enhancing IT systems security policies and procedures in response to the regulatory requirements associated with Federal and International standards.
- 10 years of IT Security experience with extensive knowledge in security regulations and security assessments having developed numerous security A&A and ATO on a range of systems including classified systems.
- Strong working knowledge with NIST Special Publications, NIST 800-53 for security control selection
- Bachelor’s degree required
- Minimum of TWO of the following (NO EXCEPTIONS): Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), Certified in Governance of Enterprise IT (CGEIT), Certified Information Systems Security Professional (CISSP), Certified Authorization Professional (CAP)
- Active Top Secret Clearance required
Responsibilities
- Lead enterprise RMF and ATO activities for federal information systems
- Develop and maintain SSPs, SARs, POA&Ms, RTMs, ISCPs, CMPs, and related security documentation
- Conduct system categorization, control selection, implementation validation, and control assessments
- Support rapid ATO initiatives and ongoing authorization activities
- Perform security assessments for cloud, hybrid, on-premises, and classified systems
- Coordinate directly with Authorizing Officials (AOs), ISSOs, engineers, and program leadership
- Utilize JCAM and related DOJ cybersecurity tools to manage authorization packages
- Conduct risk analysis and provide remediation recommendations
- Support FISMA, FISCAM, and continuous monitoring initiatives
- Provide technical leadership for vulnerability remediation and security compliance activities
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
