CybersecurityRiskAdvisor(MidLevel)

ASSYST is seeking a Cybersecurity Risk Advisor to support federal Cybersecurity program. The Cybersecurity Risk Advisor will be responsible for evaluating, maintaining, and communicating the risk posture of each FISMA system to executive leadership and making risk-based recommendations. They will act as the subject matter expert in all areas of the Risk Management Framework (RMF) and provide guidance to stakeholders on required actions, strategies, and best practices for closure of identified weaknesses. Responsibilities: Support stakeholders in ensuring that all requirements specified by the Acceptable Risk Safeguards and the procedures and standards of the risk management framework are implemented and enforced Ensure information security and privacy testing is performed throughout the SDLC as appropriate, and results are considered during the development phase of the SDLC Monitor system security posture by reviewing all proposed information security and privacy artifacts to provide recommendations to the ISSO Provide guidance to stakeholders on required actions, strategies, and best practices for closure of identified weaknesses Serve as the authority to approve selected system configuration deviations from the required baseline Coordinate with the point of contact, including ISSO, for each FISMA system or collection of Personally Identifiable Information (PII)/Protected Health Information (PHI) to identify the types of information processed, assign appropriate security categorizations to information systems, ensure legal authority for activities involving PII/PHI. Determine privacy impacts and manage information security and privacy risk Job Requirements Bachelor's degree in Computer Science, Information Technology, Cyber Security, or related field CISSP, CISM, or other relevant certifications preferred 6+ years of professional experience developing and implementing information security/assurance programs, policies, processes, and procedures per various security