Lead FISMA Program Support SME

Company Overview:

Over the past 15 years, eTel has delivered essential solutions for the federal government by securing and managing data, providing scalable identity access, modernizing legacy systems, and building high-performance platforms. By integrating new technologies and ensuring reliable operations we help agencies stay prepared for future challenges. As a premier technology solutions and services company to the US federal government, eTel possesses longstanding relationships across the federal civilian marketplace, with especially strong ties with Internal Revenue Service (IRS). Other customers include the broader Treasury Department, Commerce Department, and State Department.

eTel offers integrated CMMI Level 3 processes, tools, and techniques with innovative, cost-efficient, and secure solutions to address complex challenges. eTel also holds ISO 9001:2015, ISO/IEC 27001:2013, and ISO/IEC 20000-1:2018 certifications, and offers dedicated subject matter experts (SMEs) and thought leaders that possess a deep understanding of customers’ environments and challenges.

Position Summary:

We are seeking a highly experienced Lead FISMA Program Support Subject Matter Expert (SME) to support the U.S. Department of Transportation (DOT). This role is pivotal in assessing, enhancing, and maintaining the cybersecurity posture of DOT through alignment with FISMA, NIST Cybersecurity Framework (CSF), and Risk Management Framework (RMF) mandates. The ideal candidate will lead strategic initiatives to assess current cybersecurity practices, develop target profiles, analyze security gaps, and implement performance-based corrective action plans.

Key Responsibilities:

• Lead the assessment of DOT’s cybersecurity posture to create “as-is” and “to-be” profiles.
• Collaborate with DOT FISMA Director and key stakeholders to identify strengths, weaknesses, and areas of improvement.
• Develop and document current cybersecurity profiles and target profiles based on NIST CSF.
• Conduct gap analysis between current and target cybersecurity states and develop prioritized corrective action plans (CAPs).
• Execute action items from CAPs including resource allocation, implementation of controls, and process enhancement.
• Facilitate annual portfolio reviews with stakeholders to assess vulnerability remediation and strategic recommendations.
• Monitor performance and conduct monthly reviews of all Operating Administration (OA) systems to validate FISMA compliance.
• Evaluate improvement efforts and measure alignment with the target cybersecurity profile.
• Continuously monitor cybersecurity posture and adjust profiles and action plans as threats evolve.
• Support development and enhancement of dashboards and visualizations for security metrics.
• Provide RMF oversight to ensure effective risk management by system owners and stakeholders.
• Deliver clear documentation, data analysis, and performance reports to leadership.

Required Qualifications:

• 5+ years of experience working with NIST security controls and federal information assurance standards.
• 2+ years of direct support to DHS, CISA, or HVA PMO initiatives.
• 4+ years supporting High Value Asset (HVA) programs under the RMF lifecycle.
• Demonstrated experience leading HVA PMO teams in federal environments.
• Strong background in development of HVA Program documentation and strategic outreach materials.
• Current Security+ or equivalent cybersecurity certification.
• In-depth knowledge of: FISMA (2014), NIST RMF, NIST CSF, HVA Assessment & Standardization Requirements, CSAM (Cyber Security Assessment and Management) tool and its role in control management.
• Ability to effectively interface with stakeholders to assess needs, identify solutions, and support information assurance goals.
• Strong documentation, reporting, and oral/written communication skills.

Technical Competencies:

• Expertise in:
• Microsoft Office Suite (Excel, Word, PowerPoint, Project, Visio)
• SQL and Business Intelligence platforms (e.g., Power BI, Tableau, BI360, Hyperion)
• Microsoft SharePoint and dashboard/report development
• Ability to design and deploy analytic solutions and dashboards for executive decision-making.
• Experience conducting root cause analysis and presenting findings to executive audiences.

Preferred Qualifications:

• Master’s degree in Cybersecurity, Information Systems, or a related technical field.
• Experience with advanced data visualization tools and performance metrics reporting.
• Knowledge of federal cybersecurity policies, OMB memos, and evolving threat landscapes.

Commitment to Diversity -
eTelligent Group provides equal employment opportunities (EEO) to all applicants without regard to race, color, religion, gender, sexual orientation, gender identity, nations origin, age, disability, genetic information, marital status, amnesty, status as a covered veteran, and any other characteristic provided in accordance with applicable, federal, state and local laws.