Banner Image

All Services

Other

CISSP RMF/eMASS/NIST/DoD Compliance

$100/hr Starting at $25

I am a Certified Information Systems Security Professional (CISSP) with 6+ years of direct, hands-on experience as an Information System Security Officer (ISSO) supporting the Missile Defense Agency (MDA) at Redstone Arsenal in Huntsville, AL. I specialize in helping DoD contractors, system integrators, and organizations achieve and maintain Authorization to Operate (ATO) through the full Risk Management Framework (RMF).

What I deliver:

•  Full RMF lifecycle support: Security Control Assessments, System Security Plans (SSPs), Plan of Action & Milestones (POA&M) development and remediation, and eMASS package assembly/review

•  NIST SP 800-53 control implementation, tailoring, and compliance gap analysis

•  Vulnerability management: STIG, ACAS, SCAP Compliance Checker (SCC), and RedSeal assessments

•  Security Assessment Plans (SAP) and professional, client-ready reporting (technical and executive-level)

•  eMASS artifact management (HW/SW lists, network topology diagrams, risk assessments, etc.)

•  Cybersecurity engineering reviews for new systems, software, and cloud environments (AWS Cloud Practitioner certified)

•  Quick-turn POA&M remediation, control validation, and ATO sustainment support

Whether you need a part-time virtual ISSO, a complete RMF package built from scratch, a compliance health check, or targeted help closing findings before an upcoming assessment — I deliver fast, accurate, and audit-ready results that align with DoD, MDA, and NIST guidance.

Why clients choose me:

•  Real-world MDA / DoD program experience (not just theory)

•  Proven ability to translate complex RMF requirements into clear, actionable deliverables

•  Professional, responsive communication with both technical teams and government stakeholders

•  Flexible scheduling for side engagements — evenings, weekends, or short-term sprints

All work is performed remotely and under strict confidentiality. I am selective with engagements to ensure I can deliver the highest quality support while fully honoring my primary role.

If you need reliable RMF / ISSO expertise without the overhead of a full-time hire, let’s discuss how I can help you meet your compliance deadlines and reduce your risk.

Provide your specific need (e.g., “Need POA&M remediation for 40 controls” or “Building new SSP for upcoming ATO”) and I’ll respond within 24 hours with a scoped proposal and timeline.


Looking forward to supporting your mission.

About

$100/hr Ongoing

Download Resume

I am a Certified Information Systems Security Professional (CISSP) with 6+ years of direct, hands-on experience as an Information System Security Officer (ISSO) supporting the Missile Defense Agency (MDA) at Redstone Arsenal in Huntsville, AL. I specialize in helping DoD contractors, system integrators, and organizations achieve and maintain Authorization to Operate (ATO) through the full Risk Management Framework (RMF).

What I deliver:

•  Full RMF lifecycle support: Security Control Assessments, System Security Plans (SSPs), Plan of Action & Milestones (POA&M) development and remediation, and eMASS package assembly/review

•  NIST SP 800-53 control implementation, tailoring, and compliance gap analysis

•  Vulnerability management: STIG, ACAS, SCAP Compliance Checker (SCC), and RedSeal assessments

•  Security Assessment Plans (SAP) and professional, client-ready reporting (technical and executive-level)

•  eMASS artifact management (HW/SW lists, network topology diagrams, risk assessments, etc.)

•  Cybersecurity engineering reviews for new systems, software, and cloud environments (AWS Cloud Practitioner certified)

•  Quick-turn POA&M remediation, control validation, and ATO sustainment support

Whether you need a part-time virtual ISSO, a complete RMF package built from scratch, a compliance health check, or targeted help closing findings before an upcoming assessment — I deliver fast, accurate, and audit-ready results that align with DoD, MDA, and NIST guidance.

Why clients choose me:

•  Real-world MDA / DoD program experience (not just theory)

•  Proven ability to translate complex RMF requirements into clear, actionable deliverables

•  Professional, responsive communication with both technical teams and government stakeholders

•  Flexible scheduling for side engagements — evenings, weekends, or short-term sprints

All work is performed remotely and under strict confidentiality. I am selective with engagements to ensure I can deliver the highest quality support while fully honoring my primary role.

If you need reliable RMF / ISSO expertise without the overhead of a full-time hire, let’s discuss how I can help you meet your compliance deadlines and reduce your risk.

Provide your specific need (e.g., “Need POA&M remediation for 40 controls” or “Building new SSP for upcoming ATO”) and I’ll respond within 24 hours with a scoped proposal and timeline.


Looking forward to supporting your mission.

Skills & Expertise

Cyber DefenseCyber Risk ManagementCyber SecurityDocument ControlRisk AnalysisRisk Assessment

0 Reviews

This Freelancer has not received any feedback.