Lead ATO Subject Matter Expert

Job Overview
We seeking an experienced Lead ATO Subject Matter Expert (Cybersecurity Analyst III) to support a major Federal cybersecurity modernization and Risk Management Framework (RMF) program. This position will provide leadership and technical oversight for Assessment and Authorization (A&A), Authorization to Operate (ATO) maintenance, continuous monitoring, and rapid ATO activities supporting enterprise, cloud, hybrid, and air-gapped systems across the BOP environment. The role will serve as a senior advisor supporting cybersecurity compliance, risk management, and system authorization activities.

The successful candidate will lead RMF activities aligned with NIST SP 800-37 Rev. 2, NIST SP 800-53, FISMA, DOJ cybersecurity requirements. Responsibilities include guiding systems through the full RMF lifecycle including system categorization, security control selection and tailoring, control implementation, security assessment, authorization package development, ongoing authorization, and continuous monitoring activities.

What you’ll do

• Lead and oversee enterprise ATO and RMF activities for BOP information systems and applications
• Serve as the senior cybersecurity advisor for ATO maintenance, rapid ATOs, and continuous monitoring initiatives
• Develop and maintain System Security and Privacy Plans (SSPPs), Security Assessment Reports (SARs), POA&Ms, ISCM documentation, and authorization packages
• Coordinate with Authorizing Officials (AOs), ISSOs, SCAs, system owners, engineers, and government stakeholders
• Support risk analysis, risk response, remediation tracking, and ongoing authorization activities
• Ensure compliance with DOJ cybersecurity standards, FISMA requirements, NIST guidance, and applicable federal security policies
• Lead security categorization, control allocation, tailoring, and implementation documentation activities within JCAM
• Provide technical direction for cloud, hybrid, on-premises, and classified system authorization efforts
• Support audit readiness and cybersecurity compliance reviews
• Assist with vulnerability management, incident response coordination, and continuous monitoring activities as needed
• Prepare executive briefings, technical reports, metrics, and status updates for government leadership
• Mentor junior cybersecurity analysts and support cross-functional cybersecurity initiatives

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Information Systems, or related discipline (additional experience may be considered in lieu of degree)
• 8+ years of federal cybersecurity, RMF, or ATO experience
• Demonstrated experience leading Assessment & Authorization (A&A) or RMF efforts for federal information systems
• -- NIST SP 800-37 Rev. 2
• -- NIST SP 800-53 Rev. 5
• -- FISMA
• -- Continuous Monitoring (ISCM)
• -- POA&M management
• -- Security Control Assessments (SCAs)
• -- Cloud and hybrid authorization environments
• Experience developing and maintaining authorization documentation and artifacts
• Experience supporting federal cybersecurity compliance programs
• Strong written and verbal communication skills
• Ability to lead technical discussions and coordinate across multiple stakeholders

Preferred Qualifications

• Experience supporting DOJ cybersecurity programs
• Familiarity with federal GRC/A&A platforms
• Experience with cloud security authorization and FedRAMP concepts
• Experience supporting classified environments
• Prior experience supporting Security Operations Centers (SOC), vulnerability management, or incident response teams

Certifications (Preferred)

One or more of the following certifications is strongly preferred:

• CISSP, CAP, CISM, CCSP, Security+, GSLC, CGRC (formerly CAP)

Work Location

This position is in person in Washington, DC. Work involving classified systems must be performed onsite within government facilities.

Security Requirements

• U.S. Citizenship required
• Ability to obtain and maintain required DOJ security clearances
• Active clearance preferred
• Work may support environments requiring access to Controlled Unclassified Information (CUI) and classified systems.

Work Location: In person