FISMA Project Manager

Location: Washington, DC

Posted: 11/28/2023

Responsibilities

• Lead efforts to assess and mature the organization's current security posture and develop strategies to mature FISMA score.
• Coordinate and participate in internal and external discussions regarding compliance with FISMA requirements.
• Manage closure of 15 FISMA audit findings; ensure work being produced to satisfy FISMA requirements meets compliance and will support adjudication of 15 FISMA audit findings.
• Develop and execute project plans to ensure timely and effective implementation of FISMA compliance initiatives and closure of audit findings.
• Prepare and submit regular reports to management and regulatory bodies, detailing the organization's FISMA compliance status.
• Participate in cybersecurity and data protection related governance, policy, and standards initiatives and provide written summary reports and recommendations.
• Develop assessment criteria (metrics, measures, key performance indicators) for security requirements and implementation.
• Analyze cybersecurity best practices to identify gaps and improvement opportunities.
• Coordinate with cross-functional teams to define project scope, goals, and deliverables.
• Monitor and report on project progress, identifying and mitigating risks to ensure successful project completion.
• Help the organization move to the next level of maturity for FISMA.

Experience/Education

• 3+ years proven experience as a Project Manager (required)
• 2+ years proven experience with FISMA functions/categories and FISMA compliance (required)
• In-depth knowledge of FISMA regulations, NIST standards, and other relevant cybersecurity frameworks.
• Bachelor's degree in information technology, Cybersecurity, or a related field. Master's degree preferred.
• Ability to provide leadership, apply strategic thinking, and employ high-level of proactiveness.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
• Relevant certifications such as PMP, CISSP, CISM, or similar are highly desirable.
• Experience in supporting RMF and GRC.

Tools/Technology Experience

• ServiceNow SPM