1 to 25 of 73 Permanent FISMA Jobs

posture remains robust. Minimum of 5 years of experience in information security management or related field. Active DOD Secret Clearance or higher. Proven knowledge of federal security requirements, including FISMA, NIST, and Risk Management Framework (RMF). Experience managing security programs, conducting audits, and ensuring compliance with security regulations. Strong understanding of security technologies, policies, and procedures related to information More ❯

project planning and best practices setups, change management procedures, system design and configuration planning practices and outage analysis and streamline incident resolution. Familiarity with Federal Information Security Management Act (FISMA) and National Institute of Standards and Technology (NIST) security standards and able to incorporate into IT solutions. Demonstrated expertise in technical communications with a strong desire to achieve customer satisfaction More ❯

CDMD-OA) Configuration Management Professional (CMPro) Navy Tool for Interoperability Risk Assessment (NTIRA) Assured Compliance Assessment Solution (ACAS) Enterprise Mission Assurance Support Service (eMASS) Federal Information Security Management Act (FISMA) database Vulnerability Remediation Asset Manager (VRAM) Xacta Information Assurance (IA) Manager and NSERC DoD Information Technology Portfolio Repository-DON (DITPR-DON) DON Application Database Management System (DADMS) Microsoft Visio, PEO More ❯

and architecture. • Shall be able to demonstrate experience and knowledge with data encryption techniques and key management practices. Shall be able to demonstrate experience and knowledge with compliance requirements (FISMA). • Shall be able to demonstrate experience and knowledge with operating systems (e.g. Windows and Linux) and their security features. • Shall be able to demonstrate experience and knowledge with conducting More ❯

Assist in developing and refining incident response procedures and SOC playbooks. • Support vulnerability assessments and remediation tracking. • Maintain compliance with government standards and security policies (e.g., NIST 800-53, FISMA, DFARS/CMMC). • Participate in security audits, reporting, and continuous monitoring activities. Minimum Qualifications: • Active Top-Secret clearance (required) • Associate's or Bachelor's degree in Cybersecurity, IT, or More ❯

to work effectively independently as well as within a team environment. Must develop and manage Information Security policies, procedures, and methodologies in accordance with Federal Information Security Management Act (FISMA), DoD Regulations, NIST Special Publications, other Federal laws and regulations, and direction from leadership. Required Qualifications: Top Secret Clearance (verifiable in DISS) BA/BS college degree DOD 8570/ More ❯

Briefs Information System Owner (ISO) on RMF process, cybersecurity requirement and outstanding tasks. • Ensure adherence to cybersecurity policies, procedures and processes. This include supporting "Federal Information Security Management Act (FISMA) requirements and ensuring all necessary documentation and artifacts are updated and stored correctly for ATO purposes. • Assist in developing and updating System Security Plan (SSP) for assigned Systems • Assist in More ❯

understanding of OMB information security directives and policy compliance. Security+, CISSP, CISA, or equivalent certifications (DoD 8570 IAM Level 2 equivalent). At least 5 years of experience with FISMA, NIST, and OMB federal information system requirements. Advanced written and verbal communication skills to effectively communicate security concepts and policies. Desired: Experience shaping policies and programs for Federal or DoD More ❯

design of a strong security operations program and an effective business continuity plan. Evaluates programs against Privacy Act, HIPAA/HITECH, Federal and commercial regulations and guidance (e.g., NIST, FISMA, OMB). May monitor, evaluate, and maintain systems and procedures to protect data systems and databases from unauthorized users. Determines causes of security breaches and researches, recommends, and implements changes More ❯

CI/CD) pipelines. Excellent documentation, analytical, and communication skills. Preferred Qualifications: Relevant certifications such as CISSP, CISM, CEH, Security, or equivalent. Experience with RMF (Risk Management Framework) and FISMA compliance. Working knowledge of tools used for vulnerability management, system scanning, and SIEM. Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order More ❯

and overseeing project implementations Flexible and self-motivated, excellent communication and collaboration skills and proven ability to work effectively with all levels of IT and business management Experience in FISMA and/or other authorization processes and reporting Proven experience with NIST SP 800-37, 800-30, 800-53, 800-53A Experience with NIST RMF Demonstrated understanding of information More ❯

working with demanding cyber-aware customers, listening to and understanding requirements, developing solutions to meet their needs, presenting solutions, and accommodating feedback. 10+ years experience with NIST, RMF and FISMA frameworks, 7 of those in a corporate environment. Possess a DoD 8570 IAT III or IAM II level certification or equivalent industry certifications: CISSP, CASP+ CE, CCNP Security, CISA, GCED More ❯

8. A self-starter who can remain motivated when working individually. 9. 2-5 years of consulting experience. 10. Familiarity with GRC (governance, risk & compliance) experience a plus - NIST, FISMA, HIPPA, etc. More ❯

CI/CD) tools, and leveraging automation platforms such as Ansible or Azure Functions Understanding of Federal Government application, server, and network security requirements such as NIST, FedRAMP, and FISMA Ability to work effectively within a distributed technical team, aided by strong written and verbal communication skills Familiarity with the Atlassian suite, including Jira and Confluence Current IAT Level II More ❯

workbooks, recommend changes/clarification and submit updated workbooks to HQ AFRL for registration of Point-to-Point, Standalone, Standalone Enclave systems having a Federal Information Security Management Act (FISMA) requirement. Coordinate any changes or modifications to hardware, software, or firmware of a system directly with the Authorizing Official (AO)/Delegated Authorizing Official (DAO) prior to the change. Conduct More ❯

effective and aligned with industry best practices and regulatory requirements. Regulatory Compliance: Ensure that the organization's information systems comply with all applicable security regulations and standards, including NIST, FISMA, and the Joint Special Access Program Implementation Guide (JSIG). Conduct regular audits and assessments to verify compliance and address any identified gaps. Security Controls Implementation: Lead the implementation and More ❯

logs to identify security-relevant anomalies or risks Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP). Experience with implementing controls for cloud, container, and DevSecOps services and solutions within IL5 to IL6+ environments. Strong understanding of network protocols, operating systems, and infrastructure components. Proficiency More ❯

Switches, IDS, WAF, VPN technologies, etc. • Ability to obtain and maintain a FAA public trust clearance Preferred Additional Skills: • Experience in application and compliance of customer tailored NIST and FISMA controls and policies. • Experience collecting system logs and event data and performing engineering analysis to determine system security function, performance and compliance. • Experience developing, configuring and maintaining Linux and Windows More ❯

Switches, IDS, WAF, VPN technologies, etc. • Ability to obtain and maintain a FAA public trust clearance Preferred Additional Skills: • Experience in application and compliance of customer tailored NIST and FISMA controls and policies. • Experience collecting system logs and event data and performing engineering analysis to determine system security function, performance and compliance. • Experience developing, configuring and maintaining Linux and Windows More ❯

in networking, system administration, and software development. Required Qualifications: Demonstrated experience conducting independent security assessments of IT systems. In-depth understanding of federal cybersecurity compliance frameworks (e.g., NIST RMF, FISMA). Strong technical background in network security, system administration, and/or software development. Hands-on experience with Splunk or similar SIEM tools for log analysis and alerting. Familiarity with More ❯

email security protocols (DKIM, SPF, DMARC). Familiarity with SIEM/SOAR platforms and threat detection in cloud environments. Knowledge of federal security frameworks (e.g., NIST 800-53, FedRAMP, FISMA, DISA STIGs). Experience in hybrid cloud and on-prem security environments. Strong communication skills with the ability to explain technical concepts to non-technical stakeholders. Proven ability to manage More ❯

clearance with Polygraph. 5+ years of experience in security compliance, industrial security, or cleared facility operations. In-depth knowledge of federal compliance standards such as NISPOM, ICD 705, CMMC, FISMA, and insider threat policy. Experience supporting classified data centers or secure IT infrastructure environments. Proven ability to develop policy, perform risk assessments, and lead internal audit processes. Strong interpersonal skills More ❯

clearance with Polygraph. • 5+ years of experience in security compliance, industrial security, or cleared facility operations. • In-depth knowledge of federal compliance standards such as NISPOM, ICD 705, CMMC, FISMA, and insider threat policy. • Experience supporting classified data centers or secure IT infrastructure environments. • Proven ability to develop policy, perform risk assessments, and lead internal audit processes. • Strong interpersonal skills More ❯

web technologies (Angular, Spring Boot) Experience with DevSecOps toolchains including Jenkins, GitLab, Harness, Ansible, Terraform, and security scanning tools (Checkmarx, Fortify) Knowledge of federal compliance frameworks (NIST 800-53, FISMA) and experience maintaining Authority to Operate (ATO) environments Industry certifications in cloud architecture (AWS Solutions Architect, Google Cloud Architect) or DevSecOps practices preferred Prior experience and knowledge of federal technical More ❯

Identity Access Management (IDAM), AzureAD, and CyberArk. Strong scripting experience/background (using PowerShell, BASH, and Python.) Understanding of Federal Government application, server, and network security requirements such as FISMA, FedRAMP, and NIST. Candidate must possess strong written and verbal communication skills, a demonstrated ability to meet deadlines, a strong analytical ability. Expertise in the Atlassian tool suite, to include More ❯