Lead implementation and sustainment of DFARS/NIST SP 800-171 and Cybersecurity Maturity Model Certification (CMMC) controls for systems handling Controlled Unclassified Information (CUI)
Develop and maintain security documentation (including System Security Plans and POA&Ms)
Coordinate audits and remediation with program stakeholders and assessors
Conduct risk assessments and investigations
Oversee incident response activities

Requirements

Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)
5+ years of experience with cyber security policies and implementation of Risk Management Framework (RMF)
3+ years of experience implementing and sustaining Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012/National Institute of Standards and Technology (NIST) SP 800-171 controls and mapping to Cybersecurity Maturity Model Certification (CMMC) requirements
5+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM)
5+ years of experience assessing and documenting test or analysis data to show cyber security compliance

Benefits

health insurance
flexible spending accounts
health savings accounts
retirement savings plans
life and disability insurance programs
paid time off

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecurity policiesRisk Management Framework (RMF)DFARS 252.204-7012NIST SP 800-171Cybersecurity Maturity Model Certification (CMMC)risk assessmentsincident responsesecurity documentationSystem Security PlansPOA&Ms

Soft Skills

leadershipcoordinationcommunicationstakeholder managementinvestigative skills

Certifications

CISSPGSLCCISM