Apply Now

ATO Subject Matter Expert

Overview

ITDC is seeking a seasoned ATO Subject Matter Expert to lead a federal authorization factory supporting rapid ATO, continuous monitoring, and executive cyber risk reporting. This role directs RMF execution, coordinates with system owners and authorizing stakeholders, and ensures authorization packages are accurate, complete, and audit-ready.

Responsibilities
  • Lead RMF/ATO activities across Prepare, Categorize, Select, Implement, Assess, Authorize, and Monitor phases.
  • Guide development and quality review of SSPP/SSP, SAR, POA&M, RTM, risk analysis, and authorization packages.
  • Coordinate with ISSO, SCA, cloud, DevSecOps, PMO, and SOC teams to maintain system authorization posture.
  • Brief leadership on risk, ATO status, POA&M aging, and authorization decision readiness.
Required Qualifications
  • 10 years of IT Project Management experience in both Waterfall and Agile environments.
  • 10 years performing systems security assessments, preparing system security documentation, and/or security upgrades for live networks, desktop systems, servers, and enterprise databases leading to successful A&A or ATO of such systems.
  • 10 years assessing and enhancing IT systems security policies and procedures in response to Federal and International standards.
  • 10 years of IT Security experience with extensive knowledge in security regulations and security assessments having developed numerous A&A and ATO on a range of systems including classified systems.
  • Strong working knowledge of NIST SP 800-37, NIST SP 800-53, FIPS 199/200, FISMA, and federal ATO processes; JCAM preferred.
  • Bachelor's degree and a minimum of two (2) of: CISA, CRISC, CISM, CGEIT, CISSP, CAP.
Desired Qualifications
  • Hands-on experience operating an authorization factory model.
  • Experience briefing AOs, CISOs, or DOJ-level cyber executives.

Job Ref 2026-0503-1

Application Form

Back to Careers