Apply Now

Deputy Cybersecurity Governance Lead

Hybrid in Washington, DC, US • Posted 1 day ago • Updated 1 day ago

Contract Independent

Contract W2

No Travel Required

Hybrid

Depends on Experience

Fitment

Dice Job Match Score™

🔗 Matching skills to job...

Job Details

Skills

NIST RMF
NIST SP 800-53
POA&M
Cyber Security
AWS
Azure
GCP
SSP
SAR

Summary

Responsibilities:

Provide day-to-day operational leadership across GRC workstreams, including Risk Management, Assessment & Authorization, and Audit Support.
Oversee development, review, and quality assurance of Security Authorization packages, including SSPs, SARs, and POA&Ms across multiple systems.
Coordinate and prepare systems for Security Control Assessments (SCA), ensuring completeness, accuracy, and audit readiness of all artifacts.
Oversee Security Impact Analyses (SIAs) for system changes, modernization efforts, and new system integrations.
Ensure effective implementation and monitoring of security controls in accordance with NIST SP 800-53, RMF, and agency security policies.
Lead POA&M lifecycle management, including development, tracking, remediation validation, and closure assessments.
Oversee Risk Acceptance processes, ensuring proper documentation, justification, and alignment with system risk posture.
Manage and enforce continuous monitoring activities, ensuring control effectiveness and ongoing authorization compliance.
Coordinate audit support activities, including PBC responses, audit data calls, audit brief development, and remediation of findings.
Lead development of audit response packages (RCF, RAC, PSR) and support FISMA and A-130 reporting requirements.
Serve as a primary contractor interface to federal stakeholders, including ISSOs, Authorizing Officials (AO), and Security Control Assessors (SCA).
Oversee coordination between system owners, Security Operations, Vulnerability Management, and Security Tools teams to ensure integrated security operations.
Provide mentorship and oversight to ISSO support and business area liaisons, ensuring effective execution of responsibilities.
Establish and enforce quality standards for all GRC deliverables, ensuring documentation reflects actual system implementation.
Manage task tracking, prioritization, and execution across team activities to ensure contract deliverables and timelines are met.
Identify process gaps and implement improvements to increase efficiency, reduce RMF cycle time, and enhance audit readiness.
Prepare and deliver executive-level reports, risk briefings, and status updates to internal and external stakeholders.

Qualifications

Requirements:

Bachelor’s degree and 10+ years of IT security, GRC, or systems security engineering experience, or Master’s degree with 8+ years of experience.
Ability to obtain and maintain a public trust requiring U.S. Citizenship or .
Demonstrated experience leading or overseeing RMF and GRC activities across multiple systems or enterprise environments.
Strong understanding of the NIST RMF, NIST SP 800-53, FISMA, and federal security policies including EO 14028 and OMB M-22-09.
Experience managing ATO processes, authorization artifacts (SSP, SAR, POA&M, SIA), and continuous monitoring programs.
Proven experience supporting federal audits, including PBC responses, audit data calls, and remediation tracking.
Experience coordinating across engineering, operations, and compliance teams in complex environments.
Ability to enforce accountability and drive execution across multiple stakeholders without direct authority.
Strong understanding of enterprise IT environments, including cloud (AWS, Azure, Google Cloud Platform) and hybrid architectures.
Familiarity with enterprise platforms such as Microsoft 365, Azure AD, Cisco, and Oracle.
Strong documentation, reporting, and communication skills, including the ability to convey complex technical issues to non-technical audiences.
Proficient in Microsoft Office (Word, Excel, PowerPoint, SharePoint).

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 90929707
Position Id: Washington, DC
Posted 1 day ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

LEAD ISSO CYBER SECURITY with A&A

Hybrid in Rockville, Maryland

•

2d ago

Lead ISSO / Cyber Security Assessment & Authorization Analyst Location: Rockville, Maryland Our client is seeking a highly motivated, flexible, organized, and detail-oriented Lead ISSO / Cyber Security Assessment and Authorization (A&A) Analyst to join our dynamic team in Rockville, MD. If you are looking to grow your career while supporting mission-critical federal programs that directly impact medical and scientific communities, this is the role for you. Our customer supports groundbreaking re

Easy Apply

Contract

Depends on Experience

Lead ISSO/Cyber Security Analyst

Rockville, Maryland

•

11d ago

Hi Lead ISSO / Cyber Security Assessment & Authorization Analyst Location:Rockville, Maryland NTT DATA is seeking a highly motivated, flexible, organized, and detail-orientedLead ISSO / Cyber Security Assessment and Authorization (A&A) Analystto join our dynamic team in Rockville, MD. If you are looking to grow your career while supporting mission-critical federal programs that directly impact medical and scientific communities, this is the role for you. Our customer supports groundbreaking res

Easy Apply

Contract

70+

Information System Security Officer

Washington, District of Columbia

•

Today

A growing cybersecurity firm in DC is hiring a Junior Information System Security Officer on a 6 month contract to hire basis to support the security and compliance of enterprise systems in federal environments. This role focuses on RMF processes, audit support, and working with system owners and engineers across the SDLC. This is an entry point into federal cybersecurity where you will gain hands on exposure to ATO processes, NIST 800-53 controls, and real world compliance operations while work

Easy Apply

Contract

$45 - $50

Information Systems Security Officer

Washington, District of Columbia

•

Today

Description: Business Operational Concepts (BOC) is a recognized leader in providing Technical and Program Management Services, Information Technology, and Support. BOC has enabled their Government and Commercial clients to achieve their organizational initiatives through the application of high quality, innovative, and cost-effective professional services and solutions. We provide a positive working environment, with opportunities for advancement in our growing Federal sector workforce. We o

Full-time

0 to 0

Search all similar jobs