Key skills
Cyber SecurityLeadershipRisk ManagementCommunication
About this role
Role Overview
- As an ATO Architect, you will assist Federal and DoD Customers in navigating the complete Risk Management Framework (RMF) lifecycle while ensuring compliance with security policies and authorization requirements.
- In this role, you will collaborate with stakeholders to coordinate Authorization to Operate (ATO) activities, identify and mitigate risks, and maintain the security posture of systems from acquisition and deployment to decommissioning.
- You will act as a trusted security advisor, translating complex cybersecurity requirements into practical recommendations that facilitate the secure and compliant implementation of IT systems.
- Coordinate and support RMF Steps 0–6 activities required to obtain and maintain system Authorizations to Operate (ATO).
- Collaborate with system stakeholders to ensure security requirements are implemented and documented.
- Develop, update, and maintain detailed security documentation and authorization artifacts in accordance with the individual agencies policies and processes.
- Identify, assess, and help mitigate security risks and vulnerabilities, escalating critical risks to leadership when necessary.
- Provide information system security guidance throughout the system lifecycle, including acquisition, installation, operations, and decommissioning.
- Translate complex cybersecurity and RMF requirements into actionable recommendations to support secure system deployment and operations.
- Support security reviews of IT systems, networks, hardware, and software across a variety of environments and installation sites.
Requirements
- Must be a US with a minimum of a Tier 3 Secret clearance
- Ability to obtain and maintain a Top Secret Clearance or Suitability/Fitness determination based on client requirements
- Bachelor’s degree in Computer Science, Electronics Engineering or other Engineering or technical discipline and/or equivalent work experience
- 10 years of work experience
- Experience in proactively and independently managing complex system records in the Enterprise Mission Assurance Support Service (eMASS) tool.
- Experience with supporting all RMF steps, security categorizations, creating and updating security artifacts and FISMA security documents, control implementation details, and Plan of Action and Milestones (POA&M)
- Experience with National Institute of Standards and Technology (NIST) SP 800-53 security controls, RMF, and system authorizations and security compliance standards and processes
- Experience in creating plans and approaches for executing product installation securely in accordance with agency authorization policy requirements for system major changes and development lifecycle, while identifying potential risks and working with system stakeholders to create mitigation strategies to reduce or eliminate risks
- Analyze authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with system stakeholders to address identified gaps in accordance with required deadlines
- Excellent oral and written communication skills and the ability to independently lead client-facing meetings and present complex ATO topics to the client
- Ability to organize, manage, and maintain large amounts of discrete data with various expiration dates across multiple systems simultaneously
Tech Stack
- Cyber Security
Benefits
- Comprehensive Health, Dental, and Vision plans
- Premier 401k retirement plan with corporate matching and a 529 college saving plan
- Tax-advantaged Health Savings Account and Dependent Care Flexible Spending Account options
- Legal Resources
- Unlock Exclusive Benefits for Full-Time Employees: Generous work/life balance opportunities supported by a PTO bank, paid holidays, leave programs and additional flex time off
- Employee referral program
- Employee recognition, gift and reward program
- Tuition reimbursement for continuing education
- Remote or hybrid work options
- Engaging company events such as team building activities, annual awards and kick-off parties
- Employee Resource Groups such as our Values & Women’s Leadership Committees – Focusing on charitable and volunteering events to give back to our community, creating an inclusive environment for all, and fun employee activities
- Health and wellness-focused activities
- Relaxation Spaces
- In-office gourmet coffee, tea, fresh fruit and healthy snacks
- Corporate GREEN approach – tracking energy consumption for reduction and purchasing only environmentally friendly products for our offices