Yesterday
Top Secret/SCI
Unspecified
Unspecified
IT - Security
Arlington, VA (On-Site/Office)
GCyber is hiring a Cybersecurity Compliance Specialist to support a DoD customer with the review, validation, and sustainment of RMF packages across a portfolio of IT systems. This role focuses on control assessment, risk analysis, and documentation support for systems operating across multiple enclaves and classification levels.
As the Cybersecurity Compliance Specialist, you will:
Minimum Qualifications and Experience
As the Cybersecurity Compliance Specialist, you will:
- Review and validate RMF artifacts, including SSPs, POAMs, RARs, SAPs, and SCTMs using eMASS or similar platforms.
- Support Security Control Assessors (SCAs) by evaluating control implementation, compliance, and risk posture.
- Advise system owners and ISSMs on remediation plans, control inheritance, and RMF documentation requirements.
- Track POAM status, identify risk trends, and support continuous monitoring and annual reauthorization activities.
- Ensure application of DISA STIGs, NIST 800-53 controls, and DoD security policies across assigned systems.
- Participate in the assessment of ICAM controls, inherited security boundaries, and identity/access configurations.
- Contribute to cyber policy documentation, SOP updates, and governance improvement efforts.
Minimum Qualifications and Experience
- Active TS/SCI Clearance
- DoD 8570 IAT II certification
- Bachelor's degree in Cybersecurity, Information Assurance, or related technical discipline.
- At least 10 years of cybersecurity experience supporting RMF and A&A activities in DoD or other federal environments.
- Familiarity with NIST 800-53, eMASS, STIGs, and risk-based cybersecurity assessments.
- Experience developing and reviewing RMF documentation and coordinating with stakeholders across IT and security teams.
group id: 90817175
