Senior Ato Sme

About The Position

Requirements

• Bachelor's degree in IT, Cybersecurity, Computer Science, or related field.
• Minimum 7 years in federal cybersecurity, RMF, or information assurance
• Strong knowledge of NIST RMF lifecycle and federal security frameworks
• Experience developing SSPs, SARs, and POA&Ms for federal systems
• Proficiency with vulnerability scanning tools (Tenable Nessus, Qualys, etc.)
• Experience with GRC platforms (eMASS, XACTA, CSAM, or similar)
• Understanding of FISMA requirements and federal continuous monitoring
• Knowledge of common security controls across AC, AU, CM, IA, SC families
• Ability to assess control implementation and document findings
• Strong technical writing skills for security documentation
• One (1) of the following: CISSP, CAP, CISM, CISA, Security+, or equivalent
• MINIMUM CLEARANCE LEVEL: Public Trust + Suitability
• CITIZENSHIP: US Citizenship

Responsibilities

• Serve as Information System Security Officer (ISSO) for assigned BOP systems
• Develop, review, and maintain System Security Plans (SSPs) and supporting documentation
• Execute Security Control Assessments (SCAs) using NIST 800-53A methodology
• Prepare Security Assessment Reports (SARs) documenting control implementation status
• Create, track, and manage Plans of Action & Milestones (POA&Ms) through remediation
• Coordinate with system owners and developers to implement security controls
• Conduct security impact analysis for system changes and updates
• Support continuous monitoring activities including vulnerability tracking and reporting
• Maintain authorization artifacts in JCAM (DOJ's GRC platform)

Benefits

• Excentium offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.
• Excentium , Inc. is an equal opportunity employer.