Authorization And Accreditation Lead (Cybersecurity)

TL;DR

Authorization And Accreditation Lead (Cybersecurity): Leading and executing the entire Risk Management Framework (RMF) lifecycle for critical Sponsor programs with an accent on developing and maintaining accreditation artifacts and ensuring continuous compliance. Focus on integrating security controls into system design, conducting vulnerability assessments, and serving as the primary cybersecurity liaison.

Location: Must be based in the United States and eligible for an Active TS/SCI with Polygraph security clearance.

Company

hirify.globaloration is a solution-driven company delivering data insights and technology solutions to customers with missions critical to U.S. national interests.

What you will do

• Lead all activities across the RMF lifecycle: Prepare, Categorize, Select, Implement, Assess, Authorize, and Monitor.
• Develop and maintain accreditation artifacts, including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, and Plans of Action & Milestones (POA&Ms).
• Monitor continuous compliance with NIST 800-53, NIST 800-171, ICD 503, FedRAMP, and FISMA.
• Conduct security testing, such as vulnerability scanning with Nessus or Tenable.sc, and manage the resolution of identified weaknesses.
• Create and maintain security documentation, continuous monitoring strategies, and incident response plans.
• Collaborate with system owners and engineers to integrate security controls into system design, development, and operation.
• Serve as the primary cybersecurity point of contact for assigned systems.

Requirements

• Active TS/SCI with Polygraph security clearance is required.
• Bachelor’s degree and 3+ years OR High School Diploma and 8+ years of combined professional experience in IT systems administration, cybersecurity compliance, IT system troubleshooting, and incident response.
• 6+ years of experience as an Information Systems Security Engineer (ISSE), specifically accrediting Sponsor programs.
• Demonstrated experience completing new system authorization and accreditation through the Sponsor’s A&A processes and systems (e.g., Greenlight).
• Experience in security policy development, counterintelligence principles, and the application of security controls.

Nice to have

• Certified in AWS or an equivalent cloud technology.
• Hold one or more of Security+, CISSP, CISM, or an equivalent security certification.

Culture & Benefits

• Join a solution-driven company delivering data insights and technology solutions.
• Opportunity to work with thoughtful, skilled professionals as trusted partners.
• Apply talents supporting customers with difficult and important mission sets.
• Equal Opportunity Employer committed to diversity and inclusion.
• Reasonable accommodations provided for qualified individuals with disabilities.