RMF Compliance Support with active Top Secret

  • Springfield, VA
  • Posted 2 days ago | Updated 2 days ago

Overview

On Site
Depends on Experience
Full Time

Skills

RMF
Compliance
GRC
FISMA
NIST SP 800-53 Rev 5

Job Details

Job Title: RMF Assessment and Authorization (A&A)/Compliance Support Specialist
Clearance Level Required: Top Secret/SCI
Spring Field, VA (Onsite)
Fulltime
Position Summary:
We are seeking a mission-focused Assessment and Compliance Support Specialist to provide direct support to Client's Security Systems in managing system assessments, security compliance documentation, and risk remediation tracking. This role supports Information System Security Officers (ISSOs), Authorizing Officials (AOs), and cybersecurity leadership in the execution of the Risk Management Framework (RMF), ensuring alignment with federal mandates and CLIENT policies specific to client security systems environments.
Key Responsibilities:
Assist with the collection, review, and quality control of security authorization documentation forclient security systems, including System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, Contingency Plans (CPs), and Risk Assessments.
Track and monitor RMF milestones and security activities through various tools such as CSAM, Xacta, and ServiceNow.
Coordinate with system owners, ISSOs, and security engineers to gather evidence, update artifacts, and support ATO packages for new and existing systems.
Support the remediation lifecycle of POA&Ms, including tracking corrective actions, validating evidence, and updating statuses in compliance systems.
Facilitate security control reviews and perform initial compliance checks against NIST SP 800-53 Rev 5 and CLIENT-specific overlays.
Participate in document reviews, assessments, and stakeholder meetings for cybersecurity compliance and authorization planning.
Assist with reporting metrics, maintaining inventory accuracy, and supporting audit response activities for designated systems.
Required Qualifications:
Minimum 3 5 years of experience supporting cybersecurity compliance or RMF activities in a federal or national security context.
Bachelor s degree in Cybersecurity, Information Systems, or a related field.
Foundational understanding of NIST SP 800-53 Rev 5, Risk Management Framework (RMF), and FISMA compliance requirements.
Strong organizational skills and attention to detail when managing multiple systems and compliance artifacts.
Proficient in Microsoft Office tools and experienced with compliance platforms such as CSAM, Xacta, ServiceNow, or similar GRC tools.
Preferred Qualifications:
Certifications such as Security+, CGRC (formerly CAP), CISSP (Associate).
Familiarity with policies, overlays, and control baselines.
Experience supporting ATO packages and security documentation under DoD, IC, or civilian federal cybersecurity programs.
Knowledge of Continuous Monitoring (ConMon) and POA&M remediation best practices.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.