26 to 50 of 64 Permanent FISMA Jobs

IAT Level II required); CISSP, CISM, or CISA preferred. Experience: 3-7 years of experience in cybersecurity, risk management, or IT security. Technical Skills: Knowledge of NIST RMF, FISMA, STIGs, and ATO processes. Experience with SIEM tools, vulnerability scanners (e.g., Nessus, ACAS), and endpoint security solutions. Familiarity with Linux, Windows, and cloud security (AWS, Azure). Education: Bachelor's degree More ❯

years of directly relevant experience in cyber incident management or cybersecurity operations • Knowledge of incident response and handling methodologies • Having close familiarity with NIST 800-62 (latest revision), and FISMA standards as they pertain to reporting incidents. • Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of incident • Knowledge of general attack stages (e.g. More ❯

logs to identify security-relevant anomalies or risks Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP). Experience with implementing controls for cloud, container, and DevSecOps services and solutions within IL5 to IL6+ environments. Strong understanding of network protocols, operating systems, and infrastructure components. Proficiency More ❯

Security+, CISSP, CISM, CISA or equivalent) are required Proven experience with security frameworks and standards such as NIST SP 800-53, NIST SP 800-37, NIST Cybersecurity Framework (CSF), FISMA, etc. Proven expertise in cybersecurity architecture, CDM and ZTA Hands-on experience with technology-related administration (Installation, Configuration, Monitoring, Integration, Managing Access Controls, Automation, and Troubleshooting) of the Continuous Diagnostics More ❯

proprietary system • Knowledge of Information Security Systems (ISS) and security standards of Sensitive But Unclassified (SBU) and classified data. • Knowledge of current Federal Information Security Management Act of 2002 (FISMA) Preferred Skills: • Experienced deploying container-based solutions • HTML • JavaScript • Microservices Architecture More ❯

vectors, and customer support Preferred Qualifications: • Demonstrated experience in cyber security design, engineering, and operations • Background with System Administration, Network Administration Network Security, Networking Standards, Network Protocols, NIST/FISMA standards and controls, SIEM platforms and security tools, Network Hardware Configurations • Cyber Security Training or Certification (ie Securty+, Network+, SPLUNK, FireEye) • Knowledge of NIST SP series or ISO 27000 series More ❯

switches, firewalls, wireless controllers) Required Knowledge of network security principles and practices Required Experience with network monitoring and management tools Experience with federal security regulations and standards (e.g., NIST, FISMA) Experience in the design, configuration and implementation of LAN, WAN, WLAN, and VPN solutions Experience developing and maintaining network diagrams, documentation, and configuration standards BS Degree in Computer Science, Information … security measures, including firewalls, intrusion detection/prevention systems, and access control lists. Conduct security assessments and vulnerability scans. Ensure compliance with federal security regulations and standards (e.g., NIST, FISMA). Implement and manage VPN solutions. Adhere to federal government policies, regulations, and security requirements. Participate in audits and compliance reviews. Document and maintain records according to federal standards. Work More ❯

email security protocols (DKIM, SPF, DMARC). Familiarity with SIEM/SOAR platforms and threat detection in cloud environments. Knowledge of federal security frameworks (e.g., NIST 800-53, FedRAMP, FISMA, DISA STIGs). Experience in hybrid cloud and on-prem security environments. Strong communication skills with the ability to explain technical concepts to non-technical stakeholders. Proven ability to manage More ❯

and quality. Develop documentation and provide trainings for various subject areas as requested by Federal Lead on a schedule or on an ad hoc basis. Develop and update relevant FISMA Compliance SOPs on a quarterly basis. Manage and update Remediation Plan Guidance, SOPs, Trainings and Templates Provide guidance and support to all MGMT systems on Ongoing Authorization (OA) processes and … risks to the Federal Compliance Manager and Federal Information System Security Manager. Attend weekly Compliance Team meetings and provide reports in the approved format on the status of requested FISMA Compliance activities. Manage and track the POA&M Risk Board Schedule, Plan, host and provide meeting minutes and action items on POA&M Meetings Report weekly and monthly with a … POA&M consolidation for the FY CIO POA&M Sprint Boundary Consolidation Team provides guidance and reviews requests for boundary creation, consolidation and/or major changes to MGMT FISMA Boundaries Provides priorities to ISSOs based on the CISOD program priorities established by the Federal Compliance Manager. Review information system and program security plans, assessments, risk packages, self-assessments, POAMs More ❯

clearance with Polygraph. 5+ years of experience in security compliance, industrial security, or cleared facility operations. In-depth knowledge of federal compliance standards such as NISPOM, ICD 705, CMMC, FISMA, and insider threat policy. Experience supporting classified data centers or secure IT infrastructure environments. Proven ability to develop policy, perform risk assessments, and lead internal audit processes. Strong interpersonal skills More ❯

clearance with Polygraph. • 5+ years of experience in security compliance, industrial security, or cleared facility operations. • In-depth knowledge of federal compliance standards such as NISPOM, ICD 705, CMMC, FISMA, and insider threat policy. • Experience supporting classified data centers or secure IT infrastructure environments. • Proven ability to develop policy, perform risk assessments, and lead internal audit processes. • Strong interpersonal skills More ❯

skills Strong facilitation skills Desired Skills: Experience with authoring Cybersecurity guidance, including policies, strategies, and whitepapers Experience with HSPD-12, FIPS 201-2, FICAM, OMB 11-11, FedRAMP, PCI, FISMA, or NIST 800-53, 800-63, 800-79-2, or 800-157 policies and standards Knowledge of HTTP, XML, REST, or JSON MS degree in IT, Information Systems, or CS More ❯

Identity Access Management (IDAM), AzureAD, and CyberArk. Strong scripting experience/background (using PowerShell, BASH, and Python.) Understanding of Federal Government application, server, and network security requirements such as FISMA, FedRAMP, and NIST. Candidate must possess strong written and verbal communication skills, a demonstrated ability to meet deadlines, a strong analytical ability. Expertise in the Atlassian tool suite, to include More ❯

threat hunts through traffic analysis and behavioral indicators to detect APTs and compromised systems. Required Experience: • 10+ years in cybersecurity engineering, including tool deployment and threat mitigation in regulated (FISMA/DoD) environments. • 5+ years specifically focused on vulnerability detection and response within DoD systems. • Hands-on expertise in cybersecurity analytics platforms such as Splunk and Elasticsearch. Certifications (IAT Level More ❯

Strong background in cybersecurity strategy, risk management, and compliance Experience with security assessment tools and practices (e.g., Nessus, Splunk, SCAP, STIGs) Knowledge of federal cybersecurity policies and standards (e.g., FISMA, FedRAMP, NIST SP 800-53) Excellent analytical, communication, and stakeholder engagement skills Experience supporting cybersecurity for intelligence or defense systems Familiarity with cloud security, Zero Trust architecture, and endpoint protection More ❯

best practices, procedures, and processes to improve operations efficiency and ensure high quality of the developed BI reports Plan and implement security architecture in multiple environments Ensure compliance with FISMA requirements including coordination, planning, testing, installation, and verification of system patches and software upgrades Interact with multiple stakeholders to coordinate system upgrades Support development of BI reports Deploy new reports More ❯

skills in log collection and analysis using tools like Splunk to identify security anomalies. Strong knowledge of government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, FISMA, FedRAMP). Proven experience implementing security controls for cloud, container, and DevSecOps services across IL5 to IL6+ on NIPR, SIPR, and JWICS. In-depth understanding of network protocols, operating systems More ❯

Security features. • Work with DevOps teams to automate deployment and monitoring of Elastic solutions using tools such as Ansible, Terraform, or Kubernetes. • Ensure compliance with government security standards including FISMA, FedRAMP, and DISA STIGs. • Provide Tier 3 support and participate in on-call rotations as required. • Collaborate with data owners, analysts, and security teams to define and meet data analytics More ❯

and storage utilization. Collaborate with cybersecurity analysts, engineers, and program stakeholders to drive continuous improvement of monitoring capabilities. Ensure Splunk implementation aligns with federal cybersecurity standards (e.g., NIST, RMF, FISMA). Document configurations, workflows, and standard operating procedures. Required Qualifications Active TS/SCI CI Polygraph required 7+ years of experience with Splunk engineering in a federal or DoD environment. More ❯

unstructured and semi-structured data at scale with big data technologies. Knowledge of AI/ML frameworks and data governance best practices. Specialized knowledge in security programs supporting NIST, FISMA, FedRAMP and CMMC. Demonstrated leadership in planning/delivering technology projects/services in a Fortune 500 enterprise environment. Preferred Qualifications: Thorough knowledge of Enterprise Data Architecture and Data Intelligence More ❯

outstanding security items or changes to risk posture. • Authoring of Security Impact Analyses (SIA) for planned changes and/or deployments; and maintenance of Federal Information Security Modernization Act (FISMA) inventory records as applicable. • Maintain and update the System Security Plan (SSP) and other required documentation. Qualifications: • Bachelor's degree in Systems Security, Network Engineering, Information Technology, or related Engineering More ❯

renew ATOs Assess security controls, identify risks, and resolve vulnerabilities Use tools like eMASS to document security findings and track remediation (POA&Ms) Apply NIST 800-53 rev 5, FISMA, and FIPS 199 to ensure compliance Develop and implement security standards, policies, and procedures Perform system-level risk analysis throughout the entire system development life cycle , Lead change control and … and cybersecurity tools Required Qualifications Active Top Secret clearance with SCI eligibility 5+ years of experience working in ATO, cybersecurity, and network security environments Experience with: NIST 800-53 FISMA, FIPS 199 eMASS Security control assessments and documentation Strong understanding of cybersecurity frameworks and best practices Certifications preferred: CISSP or CISM Strong communication and documentation skills More ❯

including stakeholder management, vulnerability research, coordination with the system engineers and ISSO's. • 10 years of experience implementing and maintaining security controls for Federal IT systems in accordance with FISMA and NIST guidance • Proficient use and understanding of systems engineering concepts, principles, and theories. • Proficient understanding of cyber security specifications such as RMF, STIGS, IAVAs, and other government security specifications More ❯

and communication skills Desired Skills • Board certified in relevant security programs (e.g., CISSP, CISM, CISA, CEH, NCSF, CAP) • Professional certifications in cloud technologies - Amazon and Microsoft Azure • Understanding of FISMA More ❯

data validation routines, and backup solutions. Preferred Qualifications: Hands-on experience with cloud database services (AWS, Azure, or GCP). Familiarity with federal data privacy and security compliance (e.g., FISMA, FedRAMP, NIST). Relevant certifications (e.g., Oracle Certified Professional, AWS Certified Database Specialty). Experience developing reports and dashboards with tools like Tableau or Power BI. Additional Information: Strong interpersonal More ❯