IT Specialist (INFOSEC)

Advises leadership on federal information security (INFOSEC) laws, regulations, standards, and emerging requirements, and contributes to the development and implementation of agency-level IT security policies and directives. Monitors and reports on cybersecurity threats, vulnerabilities, and mitigation efforts, including reviewing and updating Plans of Action and Milestones (POA and M) and briefing the Chief Information Security Officer (CISO) on risk status. Develops, reviews, and maintains key security authorization documentation, including System Security Plans (SSP), Contingency Plans (CP), Risk Assessments (RA), and other materials required to obtain or maintain an Authorization to Operate (ATO). Conducts technology assessments, trend analyses, feasibility studies, and acquisition support activities, including drafting specifications, reviewing contract deliverables, and recommending courses of action to support cybersecurity objectives. Provides operational support by resolving a