Cyber Research and Development SME: FISMA Specialist

Overview

Eager to join a team where your skills are valued, your growth is nurtured, and your impact is profound? Look no further than Markon, a premier consulting firm deeply dedicated to advancing our nation's most critical missions.

 

At Markon, we don't just offer jobs – we offer opportunities for personal and professional transformation. Empowering our employees to lead, innovate, and excel, we foster an environment where new ideas are not just welcomed but celebrated. As a perennial Washington Post Top Workplace, we prioritize the well-being and success of our team members, ensuring they can bring their best selves to work.

 

Headquartered in Falls Church, Virginia, Markon has garnered national recognition for our unwavering dedication to excellence in serving the intelligence community, as well as federal civilian and defense agencies. Our growing reach extends across 17 states, 116 countries, and 5 continents, where our team of dynamic professionals collaborates to deliver unparalleled program and project management services.

 

Markon values people and the tremendous impact each individual can make – which is why we’re consistently recognized as one of the best places to work in federal government consulting. Here, you can help solve the nation’s most important challenges, surrounded by colleagues who help you grow, advance, and succeed. We are deeply dedicated to what matters – bringing out the best in each other to advance our clients’ missions.Join us and make a meaningful impact.

 

Markon is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Description

Markon is seeking a FISMA Specialist with a background in cybersecurity and familiar with domain knowledge across the DNI enterprise.

Responsibilities

• Translate cybersecurity needs and capabilities into requirements and detailed technical solutions.
• Analyze IC, USG, and industry cybersecurity best practices in order to identify gaps and improvement opportunities of IC Cybersecurity requirements.
• Develop and publish baseline security requirements for Services of Common Concern and other common enterprise services to ensure capabilities are in compliance with USG and IC cybersecurity directives and policies; are in alignment with published strategies and architectures; and are interoperable.
•  Develop security requirements and constraints for the IC IE to provide input to foundational technical documents, including but not limited to, program architectural artifacts, business cases, and concept of operations.
• Conduct critical path analysis, risk analysis, and task dependency analysis.
• Provide, coordinate, and ensure the inclusion of prioritized cybersecurity artifacts (i.e. policy, architecture, technical) specifications, and design patterns) into the IC Enterprise Standards Baseline (IC ESB).
• Develop assessment criteria (metrics, measures, key performance indicators) for security requirements and implementation guideline.
• Assist service providers' and partners in complying with USG and IC cybersecurity directives and policies.
• Coordinate involvement in and participate in IC and National-level cybersecurity exercises.
• Provide post exercise analysis and recommendations on how to address exercise key findings.
• Participate in external cybersecurity and data protection related governance, policy, and standards bodies (i.e., CNSS, NIST, DoD, and DHS) and provide written summary reports and recommendations for follow on actions if needed.
• Evaluate existing and emerging technologies and recommend strategies to support mission requirements.
• Develop concepts of operations for deploying and integrating security solutions, managing risk, reducing vulnerabilities, and ensuring successful implementation.
• Develop and publish baseline security requirements to ensure IT capabilities are in compliance with USG and IC cybersecurity directives and policies.
• Support the Chief Information Office (CIO) metrics program in the development, collection, analysis, and reporting of Cybersecurity data for the Cybersecurity Scorecard (Cybersecurity Discipline).
• Provide support in the collection, normalization, and integration of varied data sets into a single repository/report.

Qualifications

• Active TS/SCI with Poly is required.
• Project management experience for individual and team projects (ability to track detailed tasks and ensure timely delivery).
• Must have a thorough understanding of the Federal Information Security Management (Modernization) Act (FISMA); to ensure compliance with annual FISMA deliverables and reporting.
• Must have a thorough understanding Risk Management Framework Implementation and Governance.
• Analyze and report organizational security posture trends.
• Ability to work quickly, efficiently, and accurately in a dynamic and fluid environment.
• Experience in Cyber Security, position level based on experience in the technical area.
• Requires a BA degree and 12 – 15 years of prior relevant experience or Master’s with 10– 13 years of prior relevant experience.
• Minimum 5 year working with or in the IC.

Salary Range

USD $160,000.00 - USD $180,000.00 /Yr.The Markon pay range for this position is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Salary : $160,000 - $180,000