Risk Management Framework SME (Cybersecurity)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Risk Management Framework SME (Cybersecurity): Managing the full DOD RMF lifecycle for modernization efforts with an accent on compliance, documentation, and system security operations. Focus on guiding system owners through XACTA workflows, ensuring STIG compliance, and supporting independent audits in classified environments.
Location: Must be based in Hampton, VA (fully onsite at Joint Base Langley-Eustis)
Salary: $135,000–$145,000 Annually
Company
is a transformation-focused government IT services firm dedicated to delivering innovative technology solutions for public sector agencies.
What you will do
- Lead and manage the full DOD RMF process for assigned systems.
- Provide ISSM-level oversight to ensure compliance with DOD, NIST, and agency security policies.
- Develop and validate RMF artifacts including System Security Plans, POA&Ms, and security control matrices.
- Utilize XACTA for package creation, workflow management, and assessment preparation.
- Conduct vulnerability analysis, risk assessments, and remediation planning.
- Lead assessment preparation activities including CCRI reviews and AO evaluations.
Requirements
- Clearance: Active TS/SCI required.
- Location: Must be able to work fully onsite in Hampton, VA.
- 9+ years of experience or commensurate professional background.
- Proven experience as an ISSM or ISSO.
- Hands-on experience with XACTA for RMF package development.
- DOD 8140 IAM Level III certification (CISSP, CISM, or CCISO).
Nice to have
- Experience with CCRI or Command Cyber Readiness Inspections.
- Familiarity with DOD networks including NIPR, SIPR, and JWICS.
- Background in multi-system environments and programs of record.
Culture & Benefits
- Collaborative and mission-driven team environment.
- Access to learning and development platforms with certification prep.
- Training, education, and certification assistance.
- Employee Assistance Program (EAP) and pet insurance.
- Flexible work environment and internal mobility opportunities.
Hiring process
- Virtual video interview with the hiring manager/team (camera must be on).
- Enhanced biometrics ID verification and comprehensive background check (criminal/education/employment).
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
Information Security Systems Engineer (Cybersecurity)
Cybersecurity Engineer
Information Assurance Specialist (Cybersecurity)
Security Engineer
Senior Security Specialist (Cybersecurity)