Candidates must be current practitioners with applied, real-world experience in cybersecurity risk management and information system authorization.
Familiarity should align with one or more of the following areas:
Risk Management Framework (RMF) implementation and authorization processes
NIST Special Publication 800-37 (Guide for Applying the Risk Management Framework)
Security control assessment and continuous monitoring programs
Authority to Operate (ATO) decision-making and risk acceptance processes
FISMA compliance and federal information system security requirements
Organizational risk tolerance assessment and risk-based decision making
Security Authorization Boundary definition and system categorization
Plan of Action and Milestones (POA&M) management and risk mitigation strategies
Information system security documentation review and approval processes
Cybersecurity frameworks integration (NIST CSF, FedRAMP, CMMC)

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecurity risk managementinformation system authorizationRisk Management Framework (RMF)NIST Special Publication 800-37security control assessmentcontinuous monitoring programsAuthority to Operate (ATO)FISMA compliancerisk-based decision makingPlan of Action and Milestones (POA&M)