Posted today
Public Trust
Unspecified
Unspecified
IT - Security
Remote/Hybrid• (Off-Site/Hybrid)
We have an opportunity for a SENIOR ATO SME (Cybersecurity Engineer III) supporting one of our Federal customers in Washington D.C.
MINIMUM CLEARANCE LEVEL: Public Trust + Suitability
CITIZENSHIP: US Citizenship
LOCATION: REMOTE - Primarily telework; occasional on-site as needed for coordination work, Washington D.C.
Employment Type: Full-Time
Position Description:
Education: Bachelor's degree in IT, Cybersecurity, Computer Science, or related field.
Qualifications:
Certification Requirements:
One (1) of the following: CISSP, CAP, CISM, CISA, Security+, or equivalent
About Excentium
Excentium is a Service-Disabled Veteran-Owned Small Business (SDVOSB) providing cybersecurity and IT services to federal agencies. We hold FedRAMP 3PAO accreditation, CMMC Level 2 certification, and maintain facility clearances supporting our mission-critical work across government.
We take pride in building a workforce with strong Veterans focus.
Excentium offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.
Excentium , Inc. is an equal opportunity employer.
MINIMUM CLEARANCE LEVEL: Public Trust + Suitability
CITIZENSHIP: US Citizenship
LOCATION: REMOTE - Primarily telework; occasional on-site as needed for coordination work, Washington D.C.
Employment Type: Full-Time
Position Description:
- Serve as Information System Security Officer (ISSO) for assigned BOP systems
- Develop, review, and maintain System Security Plans (SSPs) and supporting documentation
- Execute Security Control Assessments (SCAs) using NIST 800-53A methodology
- Prepare Security Assessment Reports (SARs) documenting control implementation status
- Create, track, and manage Plans of Action & Milestones (POA&Ms) through remediation
- Coordinate with system owners and developers to implement security controls
- Conduct security impact analysis for system changes and updates
- Support continuous monitoring activities including vulnerability tracking and reporting
- Maintain authorization artifacts in JCAM (DOJ's GRC platform)
Education: Bachelor's degree in IT, Cybersecurity, Computer Science, or related field.
Qualifications:
- Minimum 7 years in federal cybersecurity, RMF, or information assurance
- Strong knowledge of NIST RMF lifecycle and federal security frameworks
- Experience developing SSPs, SARs, and POA&Ms for federal systems
- Proficiency with vulnerability scanning tools (Tenable Nessus, Qualys, etc.)
- Experience with GRC platforms (eMASS, XACTA, CSAM, or similar)
- Understanding of FISMA requirements and federal continuous monitoring
- Knowledge of common security controls across AC, AU, CM, IA, SC families
- Ability to assess control implementation and document findings
- Strong technical writing skills for security documentation
Certification Requirements:
One (1) of the following: CISSP, CAP, CISM, CISA, Security+, or equivalent
About Excentium
Excentium is a Service-Disabled Veteran-Owned Small Business (SDVOSB) providing cybersecurity and IT services to federal agencies. We hold FedRAMP 3PAO accreditation, CMMC Level 2 certification, and maintain facility clearances supporting our mission-critical work across government.
We take pride in building a workforce with strong Veterans focus.
Excentium offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.
Excentium , Inc. is an equal opportunity employer.
group id: RTX163aa1
