Possess deep understanding of the National Institute of Standards and Technology (NIST) Risk Management Framework and supporting legislation such as the Federal Information System Modernization Act of 2014 (FISMA).
Develop and maintain comprehensive security documentation required by FISMA, including conductive frequent reviews and updates for continued accuracy.
Coordinate control implementation across all FedRAMP High control families.
Conduct gap analyses against NIST SP 800-53 controls; drive remediation plans and ensure traceability from control narratives to technical and process evidence.
Ensures internal controls related to information risk management are effective...