The FISMA/CyberSecurity Scorecard SME supports DISA’s FISMA program by monitoring reporting requirements, responding to cybersecurity inquiries, and analyzing data to assess agency compliance. The role produces recurring compliance briefs, helps enhance automated dashboards, collaborates with stakeholders to resolve issues, and provides updates in key governance meetings.
Chickasaw Nation Industries, Inc. serves as a holding company with multiple subsidiaries engaged in several lines of business (Technology, Infrastructure & Engineering, Health, Manufacturing, Public Safety, Consulting, and Transportation) for the federal government and commercial enterprises. A portion of our profits is used to support Chickasaw citizens. We are proud to support the economic development and long-term viability of the Chickasaw Nation and its people. CNI offers premium benefits eligible on the first day of hire to full time employees; (Medical - Dental – Vision), Company Life Insurance, Short-Term and Long-Term Disability Insurance, 401(K) Immediate Vesting, Professional Development Assistance, Legal Aid Assistance Program, Family Planning / Fertility Assistance, Personal Time Off, and Observance of Federal Holidays.
As a federal contractor, CNI is a drug-free workplace and adheres to the Federal Controlled Substance Act.
ESSENTIAL REQUIREMENTS
The ability to obtain, maintain and access classified information at the Secret level.
DoD 8570 IAM/IA Technical (IAT) Level III certification
Deep understanding of FISMA (Federal Information Security Modernization Act) requirements
Deep understanding of NIST Cybersecurity Frameworks, especially SP 800-53, 800-37, 800-137, and 800-171
Experience supporting FISMA scorecard metrics, Agency-level compliance tracking, and Inspector General (IG) audits
Proficiency with compliance dashboards, data visualization tools, or enterprise reporting systems
Demonstrated ability to develop and maintain cybersecurity compliance documentation
Demonstrated ability to prepare and deliver FISMA reports, internal scorecards, and briefings to stakeholders
Excellent written and verbal communication for technical documentation and stakeholder engagement
KEY DUTIES AND RESPONSIBILITIES
Essential duties and responsibilities include the following. Other duties may be assigned.
Applies knowledge of federal and DoD cybersecurity policies, RMF, and FISMA requirements to analyze cybersecurity data and support compliance efforts.
Monitors changes in FISMA reporting requirements and tools, and communicate updates to the DISA CIO FISMA lead.
Responds to cybersecurity-related inquiries and RFIs within one business day, providing technical and compliance input or coordinating responses.
Collects, analyzes, and interprets cybersecurity data to assess agency FISMA and policy compliance, including areas like asset inventory, system authorization, endpoint security, configuration, patching, and cyber training.
Prepare and deliver weekly internal scorecard briefs; support development of an automated compliance dashboard.
Coordinates with DISA PMs to integrate 8140 compliance, STIG, IAVM, and PKI data into scorecard briefs.
Collaborates with stakeholders to address compliance issues, offer guidance, and recommend solutions to resolve system or network-level concerns.
Reports cybersecurity issues affecting posture or reporting to the FISMA Government lead.
Participates in weekly FISMA meetings, bi-weekly CIO staff meetings, and Pre-CISO working groups; provide updates, briefings, and capture action items relevant to DISA compliance.
EDUCATION AND EXPERIENCE
Bachelor's degree (IT-related field preferred) with ten (10) years of relevant experience in a cybersecurity or information assurance roles with at least three (3) years directly supporting FISMA compliance, security controls, or federal reporting initiatives.
PHYSICAL DEMANDS
Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job.
EOE including Disability/Vet
The estimated pay range for this role is $118K to $130K, with the final offer contingent on location, skillset, and experience.
CNI offers a comprehensive benefits package that includes:
- Medical
- Dental
- Vision
- 401(k)
- Family Planning/Fertility Assistance
- STD/LTD/Basic Life/AD&D
- Legal-Aid Program
- Employee Assistance Program (EAP)
- Paid Time Off (PTO) – (11) Federal Holidays
- Training and Development Opportunities
Your application submission will be considered for all potential employment opportunities with Chickasaw Nation Industries (CNI).