Apply on Employer Site

AIS (Applied Information Sciences) · 20 hours ago

Cyber Information Assurance/Security Specialist Lead

Client Site - Alexandria, VA

Full-time

Hybrid

Mid, Senior Level

$120K/yr - $181K/yr

7+ years exp

Applied Information Sciences is a mission-driven company focused on impactful projects and innovation. They are seeking a Cyber Information Assurance/Security Specialist Lead to provide strategic leadership and expert support for federal information security programs, ensuring compliance with cybersecurity requirements and overseeing governance activities.

Cloud ComputingConsultingInformation TechnologySoftware

Work & Life Balance

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Lead the planning, execution, and continuous improvement of federal information security programs

Provide expert guidance on compliance with FISMA, FedRAMP, FIPS, and NIST Special Publications

Manage security assessment and authorization (A&A) activities, including documentation, testing, reporting, and authorization package development

Oversee the implementation and operationalization of the Risk Management Framework (RMF) and the NIST Cybersecurity Framework (CSF) across systems and services

Manage IT Governance, Risk, and Compliance (GRC) programs to support enterprise security posture

Utilize the RSA Archer eGRC tool to maintain risk registers, track compliance status, manage POA&Ms, and support audit readiness

Translate technical requirements from system engineers and developers into actionable, data-driven, and risk-based security recommendations

Evaluate and analyze security controls to ensure alignment with federal standards and organizational risk tolerances

Build and sustain strong working relationships with: System Owners, Information System Security Officers (ISSOs), Authorizing Officials (AOs), Chief Information Security Officers (CISOs)

Serve as a senior advisor to leadership and stakeholders on cybersecurity risk, compliance needs, and mitigation strategies

Facilitate briefings, security reviews, and status updates for executive and technical audiences

Coordinate and lead security reviews, risk assessments, and audits to ensure compliance with federal cybersecurity policies

Support the development and maintenance of security documentation, including SSPs, SARs, RARs, and POA&Ms

Identify gaps in security controls, recommend improvements, and oversee the implementation of corrective actions

Provide mentorship and direction to junior analysts and security staff

Qualification

Certified Information Systems Security Professional (CISSP)Risk Management Framework (RMF)NIST Cybersecurity Framework (CSF)Security Assessment & Authorization (SA&A)RSA Archer eGRCFISMAFedRAMPFIPSAnalytical skillsStakeholder managementCommunication skillsMentoring skills

Required

Master of Science in Information Management Systems or related field

Minimum of 7 years of experience in IT and cybersecurity

Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA)

Minimum of 3 years of experience supporting an Information Security program within a Federal Agency

Hands-on experience with: FISMA, FedRAMP, FIPS, and NIST SP 800-series, Risk Management Framework (RMF), NIST Cybersecurity Framework (CSF), Security Assessment & Authorization (SA&A / A&A) processes, Federal security compliance and reporting, RSA Archer eGRC or similar GRC platforms

Ability to translate technical system requirements into actionable, risk-based security guidance

Strong communication, analytical, and stakeholder management skills

Clearance: Secret