Security Steward

Job Summary

To support the Centers for Disease Control and Prevention (CDC) Security Steward Services, the full-time remote Security Steward will manage the Risk Management Framework (RMF) process, maintain programs using GRC tools, and perform vulnerability management and compliance scanning.

Key responsibilities:

• Conduct the RMF process throughout its lifecycle, including IATT, ATO-C, ATO, ASR, and DATO
• Maintain programs of record using GRC tools and perform IAVA management
• Execute compliance scanning and vulnerability remediation activities, including documentation and reporting

Required qualifications:

• 5-10 years of specialized Information Assurance experience
• Degree in cybersecurity, IT, Computer Science, or a related field preferred
• CompTIA Security+ certification required
• Hands-on experience with compliance scanning tools such as ACAS and Fortify
• Thorough understanding of the Federal Information Security Management Act (FISMA)