Jr. RMF Consultant
About the role
The Work
The individual will oversee all aspects of security compliance, including developing implementation statements, identifying and documenting security/privacy weaknesses, and recommending improvement actions. They will create compliance accelerators for governance, risk management, and technical security control implementation, focusing on FedRAMP Moderate system ATO, NIST 800-53/A, the Risk Management Framework, continuous monitoring, ATO package management, and FISMA reporting.
The role involves collaborating with compliance, technical, and management teams, as well as Security Leadership and the client CISO, to define and implement functional, technical, and operational security controls for Moderate Impact Systems. Responsibilities also include control identification, deployment, inheritance, and compliance across IaaS, SaaS, and PaaS environments. The resource will support a team of compliance specialists to enhance the organization's security and privacy posture and ensure continuous ATO renewal.
Basic Qualifications
- Overall 2 years of experience in Cybersecurity (RMF and Compliance)
- Experience in identifying and documenting security/privacy weaknesses, and recommending improvement actions
Bonus
- Governance and compliance experience
- CISA certification, CISM, Security+
Eligibility requirements
- US Citizen
- Must be eligible to obtain a government public trust clearance