Security / RMF Lead

E-logic is seeking a Security / RMF Lead to support the National Center for Health Statistics (NCHS) Office of Informatics, Governance, and Assurance (OIGA) under the VISION task order. Serving as a Subject Matter Expert and Security Steward, you will act as the key liaison between system developers and federal security staff to ensure a modern, secure public health informatics framework.

Key Responsibilities

• Ensure full system compliance with the NIST Risk Management Framework (RMF), FISMA obligations, FIPS, and HHS/CDC policies.
• Author and maintain critical security lifecycle documentation, including System Security Plans (SSPs), POA&Ms, and full Authorization to Operate (ATO) packages.
• Coordinate software assurance scans (e.g., Fortify), remediate vulnerabilities, and manage continuous monitoring (ISCM) activities using CSAM/eMASS.
• Support Privacy Threshold Analyses (PTAs) and Privacy Impact Assessments (PIAs). Partner with the CDC CSIRC to mitigate security or privacy breaches within mandated federal timelines.
• Advise cross-functional teams (Data Scientists, Developers, Architects) on secure systems engineering practices (NIST SP 800-160) to eliminate architectural risks.
  
  

Minimum Qualifications

• Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, or a related field.
• Experience of 6 years of federal information security experience heavily focused on applying the NIST RMF framework.
• Hands-on experience developing SSPs/POA&Ms and utilizing federal security management tools like CSAM or eMASS.
• Certifications: CISSP, CISM, or CAP are highly preferred.
• Position requires U.S. Citizenship to obtain a Public Trust determination.
  
  

Important Notice

This role is part of a proposal for the National Center for Health Statistics (NCHS) . Hiring is contingent upon the selection of the consultant. Selected candidates will be included in the proposal and must authorize the use of their resume for submission.