Security Engineer

• Develop, maintain, and manage security documentation required for the Authorization and Accreditation (A&A) package, including System Security Plans (SSPs), Contingency Plans (CPs), and Security Assessment Reports (SARs).
• Provide oversight and development of Plans of Action and Milestones (POA&Ms) and ensure timely remediation of identified risks.
• Lead and perform all continuous monitoring activities, ensuring security controls remain effective and compliant with federal regulations.
• Conduct and document risk assessments based on NIST standards, ensuring that system design and implementation sufficiently mitigate Information Assurance (IA) risks.
• Implement, assess, and validate NIST SP 800-53A security controls for federal agencies, ensuring systems achieve and maintain compliance.
• Apply advanced risk management techniques to identify vulnerabilities and provide recommendations for mitigation strategies.
• Collaborate with technical teams to integrate security into system development life cycles and operational processes.
• Utilize data analysis, data mining, and business intelligence techniques to correlate data from disparate sources, identify trends, and create informative risk/compliance dashboards and visualizations.
• Provide guidance on security policy, compliance requirements, and audit readiness to technical and business stakeholders.
• Stay current with evolving federal security requirements, emerging technologies, and industry best practices to maintain a compliance posture.

Security Policy and Compliance Manager

Cybersecurity Architect

Technical Lead, Cybersecurity Assessment