FISMA Metric Analyst

Responsibilities

• Direct and manage annual FISMA reporting, and coordinates Program Reviews with the OIG and the Senior Agency Official for Privacy (SAOP), in accordance with OMB guidance.
• Provide research and development support of data analytic and data management technologies including those associated with collecting, analyzing, parsing, and reporting large volumes of data that may support the DHS CISOD FISMA Reporting team, as well as DHS Component FISMA Reporting teams.
• Generate the draft and final versions of the annual FISMA Report and memos for delivery to senior DHS Management, Congress, and OMB.
• Generate draft and final versions of three (3) formal quarterly FISMA reports for the 1st 3 quarters of each year for delivery to senior DHS Management.
• Generate trending and ad-hoc reports as requested. Reporting includes extracting data from the OCISO databases, designing, developing, and implementing automated reports. Data being reported may represent subsets of the overall Performance reporting or new/unique data sets based on entire compliance data stored within the supporting tools.
• Contractor shall validate the Components and non-Components data, prepare the data call and the consolidation sheet and adjudicate Components justifications for discrepancies.
• Update the data call in the tools (SharePoint, SNOW, etc) to reflect the most recent OMB and Federal CIO FISMA metrics.
• Contribute to one-on-one meetings through validation POCs who are also will be in charge of the executive order sections.
• Develop, update, maintain, and report on cybersecurity metrics to measure the effectiveness of the DHS CISO's Cybersecurity Program.
• Develop Governance, Risk, and Compliance Dashboards to leverage centralized program and system data to support analytics for managing and reporting security posture.
• The contractor shall actively develop and support the compliance monitoring/reporting activities as related to DHS FISMA and other official reporting (both internal and external to DHS (ex. Cyberscope reporting).

Basic Qualifications:

• 5 years of relevant experience
• Bachelor's degree or 10 years of experience
• At least 1 Cyber Certification (CISSP, CISM, Security+, etc)
• 1 year of experience with FISMA and FISMA Metrics
• US Citizen with an Active Secret Clearance

Preferred Qualifications:

• Data Analytics Skills
• Tools experience with Splunk/Elastic
• Communication skills including the ability to be able to present
• DHS EOD Preferred but not required

Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy of Evolver Federal not to discriminate based on race, color, ancestry, religion, gender, age, national origin, gender identity or expression, sexual orientation, genetic factors, pregnancy, physical or mental disability, military/veteran status, or any other factor protected by law.