GCR Professional Services
Risk Management Framework Engineer
GCR Professional Services, Fort Belvoir, Virginia, United States, 22060
Authorizing Official Representative, Risk Management Framework
Please make an application promptly if you are a good match for this role due to high levels of interest.Summary: Our client seeks an experienced Authorizing Official Representative (AOR) to support the Headquarters, Department of the Army (HQDA) G-6 SAP CIO. This role is responsible for maintaining the cybersecurity and information assurance (IA) posture for critical Army programs.
Key Responsibilities:
Utilize the Risk Management Framework (RMF) to advise the Senior Authorizing Official on risk management decisions to protect information and IT assets. Review and assess documentation, including Security Controls Traceability Matrix (SCTM), System Security Plans (SSP), Security Assessment Reports (SAR), and Plans of Action and Milestones (POA&Ms). Oversee the implementation and quarterly review of POA&Ms to ensure compliance. Act as a liaison between Security Control Assessors (SCAs) and program teams. Represent the organization in Army and DoD meetings, providing leadership with executive summaries and recommendations. Analyze DoD and Army policies, identifying impacts on current standards and offering recommendations.
Qualifications:
Security Clearance: Active Top Secret with SCI eligibility. Education & Experience: Bachelor’s degree with 5 years of cybersecurity experience, or equivalent combination of education and IT experience. Master’s degree preferred. Technical Knowledge: Familiarity with DoD and NIST RMF and the Joint Special Access Program Implementation Guide (JSIG). Certifications: DOD 8570 IAT II certification (e.g., CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP). Experience: 5+ years in developing or implementing cybersecurity strategies, policies, and procedures for National, DoD, or Army initiatives. Additional Requirements: Ability to travel up to 10%; must be able to work in a general office environment with occasional standing and walking.
Desired Qualifications:
Proficiency in reading technical documentation on networks, systems, and security procedures. Experience with system and network security tools. Strong teamwork skills. Familiarity with SAP operations, HQDA staff work, or prior military experience.
This is a challenging role in a dynamic environment, offering the opportunity to support Army cybersecurity initiatives.
It is the policy of GCR to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. GCR is an Equal Opportunity/Affirmative Action Employer and embraces diversity in our employee population.
Please make an application promptly if you are a good match for this role due to high levels of interest.Summary: Our client seeks an experienced Authorizing Official Representative (AOR) to support the Headquarters, Department of the Army (HQDA) G-6 SAP CIO. This role is responsible for maintaining the cybersecurity and information assurance (IA) posture for critical Army programs.
Key Responsibilities:
Utilize the Risk Management Framework (RMF) to advise the Senior Authorizing Official on risk management decisions to protect information and IT assets. Review and assess documentation, including Security Controls Traceability Matrix (SCTM), System Security Plans (SSP), Security Assessment Reports (SAR), and Plans of Action and Milestones (POA&Ms). Oversee the implementation and quarterly review of POA&Ms to ensure compliance. Act as a liaison between Security Control Assessors (SCAs) and program teams. Represent the organization in Army and DoD meetings, providing leadership with executive summaries and recommendations. Analyze DoD and Army policies, identifying impacts on current standards and offering recommendations.
Qualifications:
Security Clearance: Active Top Secret with SCI eligibility. Education & Experience: Bachelor’s degree with 5 years of cybersecurity experience, or equivalent combination of education and IT experience. Master’s degree preferred. Technical Knowledge: Familiarity with DoD and NIST RMF and the Joint Special Access Program Implementation Guide (JSIG). Certifications: DOD 8570 IAT II certification (e.g., CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP). Experience: 5+ years in developing or implementing cybersecurity strategies, policies, and procedures for National, DoD, or Army initiatives. Additional Requirements: Ability to travel up to 10%; must be able to work in a general office environment with occasional standing and walking.
Desired Qualifications:
Proficiency in reading technical documentation on networks, systems, and security procedures. Experience with system and network security tools. Strong teamwork skills. Familiarity with SAP operations, HQDA staff work, or prior military experience.
This is a challenging role in a dynamic environment, offering the opportunity to support Army cybersecurity initiatives.
It is the policy of GCR to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. GCR is an Equal Opportunity/Affirmative Action Employer and embraces diversity in our employee population.