Perform duties in tasks in support of maintaining System Security Plans (SSPs), Risk Assessment Reports (RARs), and Plans of Action and Milestones (POA&Ms).
Perform regular self-assessments and internal audits to ensure the system maintains its Authorization to Operate (ATO).
Maintain and update supporting Governance, Risk, and Compliance (GRC) assets in the customer's GRC tools.
Coordinate with technical teams to track the remediation of vulnerabilities identified in scans (e.g., Nessus, ACAS).
Help develop and deliver security awareness materials to staff, ensuring a culture of security throughout the organization.
Work with various stakeholders to ensure the systems meet their continuous monitoring requirements and metrics.
Identify "bottlenecks " in our current security wor...