We are excited to announce an opening for a Risk Management Framework Subject Matter Expert (SME) to assist in a vital modernization effort. This position requires you to work on-site at Joint Base Langley-Eustis in Hampton, Virginia, and necessitates a Top Secret clearance with SCI.

Overview

The ideal candidate will possess a robust background in information system security management (ISSM) and extensive hands-on experience with XACTA. Your primary role will be to lead system owners, engineering teams, and leadership through the entire Risk Management Framework (RMF) lifecycle, ensuring compliance, managing necessary documentation, and supporting the secure operations of systems in both classified and unclassified settings.

Key Responsibilities

• Lead and manage the complete DOD RMF process for assigned systems.
• Provide ISSM-level oversight to guarantee compliance with DOD, NIST, and agency-specific security policies.
• Develop, maintain, and validate RMF documentation, including System Security Plans, security controls traceability matrices, POA&M, and system categorization artifacts.
• Utilize XACTA for control implementation, evidence uploads, package creation, workflow management, and assessment preparation.
• Collaborate closely with engineers, administrators, developers, and mission stakeholders to ensure secure design and architecture decisions.
• Lead assessment preparation activities and support independent audits, CCRI reviews, and Authorizing Official (AO) evaluations.
• Conduct vulnerability analysis, risk assessment, and remediation planning.
• Guide continuous monitoring activities, including STIG compliance, vulnerability scanning, patch management review, and incident documentation.
• Serve as a subject matter expert for cybersecurity policy interpretation, control inheritance, and risk acceptance recommendations.
• Provide training, mentoring, and support to security analysts and program team members.

Qualifications

High School diploma with 9+ years of related experience or equivalent qualifications.

Required Skills and Experience

• Active TS/SCI clearance.
• Demonstrated experience serving as an ISSM or ISSO.
• Hands-on expertise with XACTA for developing RMF packages.
• Familiarity with STIGs, ACAS, HBSS/Trellix, vulnerability management, and secure configuration baselines.
• Exceptional communication skills with the capability to brief leadership and stakeholders.
• DOD 8140 IAM Level III (CISSP, CISM, CCISO) certification.

Preferred Skills and Experience

• Experience supporting complex, multi-system environments or programs of record.
• Familiarity with CCRI/Command Cyber Readiness Inspections.
• Background working with DOD networks (NIPR, SIPR, JWICS).

Posted Salary Range

USD $135,000.00 - USD $145,000.00 /Yr.

Company Overview

Join GovCIO, where we are dedicated to transforming government IT. Our mission is to make a positive impact by delivering innovative IT services and solutions that enhance the functioning of government agencies and serve citizens better.

Expectations and Process

• Interview Process: Expect a virtual video interview conducted via video with the hiring manager and/or team, with your camera on and a valid photo ID presented.
• Hiring Process: Undergo enhanced biometrics ID verification screening, background check, and verification of your education and employment history.

Employee Perks

We offer a comprehensive range of perks and benefits that support our employees' personal and professional well-being, including:

• Employee Assistance Program (EAP).
• Corporate Discounts.
• Access to a Learning & Development platform, including certification preparation content.
• Training, Education, and Certification Assistance for full-time employees.
• Referral Bonus Program.
• Internal Mobility Program.
• Pet Insurance.
• Flexible Work Environment.

At GovCIO, we value our employees' contributions and are committed to creating a workplace that fosters their growth and development. Join us to be part of our culture that prioritizes our teams and their experiences.

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity or expression, sexual orientation, national origin, disability, or veteran status.