ATO Accreditation Lead for Federal Health
Apply NowCompany: ECS
Location: Fairfax, VA 22030
Description:
ECS is seeking an Accreditation Lead for Federal Health (ATO/RMF) to fill a Remote position. Please Note: This position is contingent upon [contract award].
ECS is seeking an experienced information security professional to develop and manage system authorization documentation in support of Civilian and DoD Authority to Operate (ATO) Security Assessment & Authorization (SA&A) cloud cybersecurity initiatives. The ideal candidate must demonstrate a strong understanding of NIST SP 800-53, FedRAMP, HIPAA, FISMA and RMF security frameworks and compliance standards.
Develop and amend security and privacy documentation in accordance with NIST SP 800-53, as amended, for each security assessment project; to include Plan of Action and Milestones (POA&M) and architecture/network diagrams.
Conduct cybersecurity review and integration of existing and new cloud applications/systems, including subsystems in their respective system boundary, and communicate the results and potential implications of identified security control weaknesses.
Analyze security tool reports and determine residual risk or false positives from technical reports and artifacts before assigning findings.
Document and provide findings and recommendations that are concise, system-specific, and actionable.
Excellent oral and written communication and presentation skills with the ability to convey technical and business concepts to technical and non-technical audiences.
Salary Range: $100,000-$135,000
General Description of Benefits
ECS is seeking an experienced information security professional to develop and manage system authorization documentation in support of Civilian and DoD Authority to Operate (ATO) Security Assessment & Authorization (SA&A) cloud cybersecurity initiatives. The ideal candidate must demonstrate a strong understanding of NIST SP 800-53, FedRAMP, HIPAA, FISMA and RMF security frameworks and compliance standards.
Develop and amend security and privacy documentation in accordance with NIST SP 800-53, as amended, for each security assessment project; to include Plan of Action and Milestones (POA&M) and architecture/network diagrams.
Conduct cybersecurity review and integration of existing and new cloud applications/systems, including subsystems in their respective system boundary, and communicate the results and potential implications of identified security control weaknesses.
Analyze security tool reports and determine residual risk or false positives from technical reports and artifacts before assigning findings.
Document and provide findings and recommendations that are concise, system-specific, and actionable.
Excellent oral and written communication and presentation skills with the ability to convey technical and business concepts to technical and non-technical audiences.
Salary Range: $100,000-$135,000
General Description of Benefits
- Bachelor's degree in Cybersecurity, Information Security, Computer Science, or related field.
- 10 years experience supporting Health IT, or healthcare related, Cybersecurity, Information security compliance initiatives engaging CISO/ISSO leadership and cross-functional teams.
- 5 years experience supporting ATO SA&A cloud cybersecurity initiatives.
- PMP (Project Management Professional) Certification.
- Travel within the Washington DC Metro Area, and CONUS as needed.