Job Description

Summary:

Join a stable and growing company on a long-term Federal project with variety and interesting challenges. We are looking for a Cybersecurity Analyst who fully understands the Authorization to Operate (ATO) lifecycle process and can independently perform all aspects (RMF steps 1-5, 7) of the ATO process and package development, from initiation to completion. The position is full-time and remote. Comprehensive benefits package includes medical, dental, life, and disability insurance, 401k plan with employer matching, and a tuition reimbursement program. 1099 acceptable. We welcome applications from individuals with federal government experience, including those who have recently retired.

NOTE: Resumes that do not clearly demonstrate the required qualifications will not be considered qualified. NO PHONE CALLS, PLEASE.

Responsibilities:

• Draft all documentation that is needed for Authorization to Operate (ATO) packages for all systems identified for a federal agency.
• Draft technical architectural and data flow diagrams for systems that are missing these elements in the Enterprise Architecture Repository (EAR).
• Develop plan of action and milestones documentation.
• Fix vulnerabilities findings identified during security testing.
• Provide security and systems configuration recommendations to comply with security requirements.
• Conduct security control assessments on all identified systems.
• Draft technical templates.
• Provide assistance on evaluating and executing the existing ATOs transition the access controls for NIST regulations.

Qualifications - Required:

• Bachelor's degree in Computer Science, Cybersecurity, or related field (please ensure degree attained and date of graduation included)
• Minimum 5+ years IT experience (preferably in cybersecurity)
• Minimum 3+ years leading/performing (note: not "supporting") ATO package development experience for one or more federal agencies, including knowledge of and experience with all applicable regulatory requirements and related guidance (FIPS 199, NIST SP 800-53, etc.)
• Demonstrated experience with common ATO tools (eMASS, Xacta, Archer, Splunk, etc.)
• Current CISSP, CISM, or CISA certification (CISSP preferred. Please ensure your resume includes the certification # and exp. date)
• Authorized to work in the U.S.

Qualifications – Highly Desired:

• Master's degree in a related field
• 5+ years' experience with ATO package development
• Dept. of Health & Human Services experience (preferably in cybersecurity)
• Additional, relevant certifications (AWS, etc.)

Compensation:

• $103,000 to $121,000/yr, based on capability and experience

Other:

• Location: Remote
• Telecommuting: Yes
• Hours: Full Time

About BUSINESS PERFORMANCE SYSTEMS:

Business Performance Systems is a successful, well-established small business composed of dedicated, skilled consultants supporting high-priority government projects. We provide our staff with a great degree of autonomy and growth potential in a company that combines the entrepreneurial environment of a small business with the maturity and financial stability of a large company. We offer competitive salaries and a comprehensive benefits package.

Business Performance Systems is an equal opportunity employer.