Overview
ITDC is seeking experienced Senior ATO Subject Matter Expert to support a federal authorization factory. The role produces and quality-reviews ATO packages, supports continuous monitoring, and works alongside system owners, ISSOs, and the Lead ATO SME.
Responsibilities
- Produce SSPP/SSP, SAR, POA&M, RTM, and supporting authorization artifacts.
- Support RMF execution across Categorize, Select, Implement, Assess, Authorize, and Monitor.
- Coordinate with system owners, ISSOs, SCAs, and engineering teams on control implementation evidence.
- Brief authorization status, POA&M aging, and risk findings to the Lead ATO SME and program leadership.
Required Qualifications
- 7 years performing systems security assessments, preparing system security documentation, and/or security upgrades for live networks, desktop systems, servers, and enterprise databases leading to A&A or ATO of such systems.
- 7 years assessing and enhancing IT systems security policies and procedures in response to Federal and International standards.
- 7 years of IT Security experience with extensive knowledge in security regulations and assessments having developed numerous A&A and ATO on a range of systems including classified systems.
- Strong working knowledge of NIST SP 800-37, NIST SP 800-53, FIPS 199/200; JCAM preferred.
- Bachelor's degree and a minimum of one (1) of: CISA, CRISC, CISSP, CAP.
Desired Qualifications
- Experience operating in a high-velocity (rapid ATO) authorization factory.
- Additional certifications: CISM, CGEIT, CGRC.
Job Ref 2026-0503-2