Responsible for documenting, monitoring, evaluating, ensuring compliance with NIST, OMB, FISMA, FedRAMP, FOIA, and other Federally mandated Laws, Directives and Regulations to ensure the Assessment and Accreditation of cloud-based Federal Financial Systems. Maintain, review and revise System Security, Contingency, and Incident Response Plans. Create, coordinate and/or update Interconnection Security Agreement/Memorandum of Understanding documentation. Conduct Threat Analysis, Business, Security and Privacy Impact Assessments. Create, coordinate and/or document FIPS-199 Assessments and related Security Test and Evaluation, Vulnerability, and Security Assessment Plans. Maintain Cyber Security Assessment and Management (CSAM) accounts and associated ATO documentation for DOI and DHS Financial Applications, to include Plan of Action and Milestones creation, tracking and remediation, and SSP revision activities. Coordinate with ISSO, Technical and Functional Leads to create, review, revise and disseminate security policy and procedures. Coordinate the efforts of internal and external auditors and Office/Bureau Technical, Security, and Business Process Leads to ensure the validation and remediation of all audit related Notice of Findings of Record, Internal Control Findings Review, and POA&M items. Coordinate and review personnel training records to ensure compliance with OCIO, Departmental, Bureau, and Federal standards for FISMA, RBST, PII, and other organizational Information Security and Policy Awareness training. Organize, schedule and lead recurring security status and maintenance meetings. Review, research, assess and provide recommendations on security aspects of new technologies and business processes.

Responsible for monitoring, evaluating, documenting and ensuring compliance with NIST, OMB, FISMA, FedRAMP, RBST, FOIA, and other federally mandated Laws, Directives and Regulations to ensure the Assessment and Accreditation of the Financial Business Management System Cloud (FBMS Cloud). Maintaining, reviewing and revising System Security Plan, Business, Security and Privacy Impact Assessments, Contingency Plan, and Plan of Action and Milestone documentation. Maintaining Cyber Security Assessment and Management accounts and associated documentation for the Financial and Business Management System. Coordinates with ISSO to create, review, revise and disseminate security policy and procedures. Create periodic sensitive transaction access and use security monitoring procedure for SAP based Federal Financial Systems. Produce Periodic Review of End-User Access reports for multiple Agency and Bureaus. Coordinate the efforts of external auditors and Technical, Security, and Business Process Leads to ensure the validation and remediation of all audit related Notice of Findings of Record, Internal Control Findings Review, and POA&M items. Monitor and report on Cloud Host Provider vulnerability scan and POA&M reports. Creation, submission, reporting, tracking and routing of POA&M reports for all organizational assets not brought to compliance within the Department defined timeframe. Coordinate and review personnel training records to ensure compliance with FBMS, OCIO, Department of the Interior, and Federal standards for FISMA, RBST, PII, and other organizational Information Security and Policy Awareness training. Conducts facility physical security inspections and review facility and network scan results. Organize, schedule and lead recurring security status and maintenance meetings. Review, research, assess and provide recommendations on security aspects of new technologies and business processes.