IRS - Cybersecurity SME / RMF Advisor
cFocus Software Incorporated, Washington, District of Columbia, United States
cFocus Software seeks a Cybersecurity SME / RMF Advisor to join our program supporting the Internal Revenue Service (IRS). This position is remote. This position requires a Public Trust clearance.
Qualifications:
Bachelor’s degree in Cybersecurity, IT, or related field. 12+ years of Cybersecurity experience Strong knowledge of FISMA, NIST RMF, FedRAMP, and federal cybersecurity policies. Experience with security control assessments and ATO processes. Expertise in NIST SP 800-53 controls and assessment methodologies. Experience supporting audits and compliance activities. Strong analytical, communication, and documentation skills. Duties:
Assess impact of new laws, regulations, and policies on cybersecurity programs and advise leadership. Ensure compliance with FISMA, NIST SP 800-37, NIST SP 800-53, FedRAMP, OMB, and IRS requirements. Develop, update, and maintain cybersecurity policies, procedures, templates, and documentation. Provide technical SME support for security control assessments and RMF processes. Recommend and implement process improvements and automation for assessment methodologies. Maintain assessment templates (SAP, SSP, SAR, SCTM, etc.) and ensure standardization. Support audit responses (TIGTA, GAO, OMB) and data calls. Provide training, knowledge transfer, and mentoring to federal staff. Develop and maintain master schedules, metrics, and dashboards for assessment activities. Support threat modeling, risk analysis, and proactive security improvements. Provide ongoing SME support to assessment teams and stakeholders.
#J-18808-Ljbffr
Bachelor’s degree in Cybersecurity, IT, or related field. 12+ years of Cybersecurity experience Strong knowledge of FISMA, NIST RMF, FedRAMP, and federal cybersecurity policies. Experience with security control assessments and ATO processes. Expertise in NIST SP 800-53 controls and assessment methodologies. Experience supporting audits and compliance activities. Strong analytical, communication, and documentation skills. Duties:
Assess impact of new laws, regulations, and policies on cybersecurity programs and advise leadership. Ensure compliance with FISMA, NIST SP 800-37, NIST SP 800-53, FedRAMP, OMB, and IRS requirements. Develop, update, and maintain cybersecurity policies, procedures, templates, and documentation. Provide technical SME support for security control assessments and RMF processes. Recommend and implement process improvements and automation for assessment methodologies. Maintain assessment templates (SAP, SSP, SAR, SCTM, etc.) and ensure standardization. Support audit responses (TIGTA, GAO, OMB) and data calls. Provide training, knowledge transfer, and mentoring to federal staff. Develop and maintain master schedules, metrics, and dashboards for assessment activities. Support threat modeling, risk analysis, and proactive security improvements. Provide ongoing SME support to assessment teams and stakeholders.
#J-18808-Ljbffr