RMF Program Lead

The RMF Program Lead serves as the senior authority overseeing all records governance activities across the organization. This role ensures full compliance with federal records regulations-including the Federal Records Act (FRA), National Archives and Records Administration (NARA) requirements-and Department of Defense (DoD) records management policies. The Lead provides strategic direction, drives modernization and migration initiatives, and ensures that all recordkeeping systems meet federal and DoD standards for retention, classification, and lifecycle management., * Oversees all records management activities, ensures compliance with federal regulations (e.g., NARA) and DoD guidelines, and directs migration efforts. Senior-level role responsible for ensuring alignment with federal and DoD records management requirements.

• Provides strategic oversight of all records management activities, ensuring compliance with federal records regulations such as the Federal Records Act (FRA) and NARA requirements.
• Develops and enforces records retention policies across the organization in alignment with DoD and DHRA policies.
• Tracks overall compliance with recordkeeping systems, ensuring proper classification, retention, and disposal schedules are maintained.
• Oversees records-related CAPs and ensures timely closure of audit findings related to records management.
• Prepares compliance reporting and updates for leadership regarding records retention progress and system governance.
• Other duties as assigned.

• Expertise in the Risk Management Framework (RMF), including NIST SP 800-37 and NIST SP 800-53, to ensure consistent implementation of security controls.
• In-depth knowledge of information systems security principles, methodologies, and technologies, including operational requirements and cyber threats.
• Familiarity with federal cybersecurity mandates, including FISMA, FedRAMP, and DoD/DISA policies and standards.
• Ability to perform thorough risk assessments, identify vulnerabilities, and provide actionable mitigation strategies aligned with organizational priorities.
• Proficient in creating, reviewing, and validating RMF deliverables, such as System Security Plans (SSPs), Security Assessment Reports (SARs), and POA&Ms.
• Skilled in managing large-scale cybersecurity projects, ensuring adherence to timelines, resources, and organizational goals.
• Ability to leverage tools and technologies to automate RMF processes, improve workflow efficiency, and establish performance metrics.

Desired Skills

• Familiarity with RMF processes, ATO documentation, and system governance frameworks.
• Knowledge of electronic records management systems (ERMS), digital migration, and metadata standards.
• Relevant certifications (e.g., CRM, IGP, CIP, DoD 5015.02-related credentials)

Education

• *Bachelor's degree in Cybersecurity, IT, Computer Science, or related field.

Additional Requirements

• Strong leadership and mentoring skills to guide a team of RMF professionals, ensuring quality deliverables and professional development.
• Strong ability to convey complex cybersecurity concepts and RMF processes to stakeholders at all levels, including technical staff, leadership, and external auditors.
• Strong analytical mindset to identify security challenges, evaluate solutions, and provide expert recommendations for enhancing the organization's cybersecurity posture.
• Must be able to pass background screening prior to employment.
• US Citizenship, legal permanent residence, or US work authorization with a minimum of 3 years of US presence is required due to federal contract requirement.
• Active Secret clearance required; ability to obtain TS/SCI preferred.

• Minimum 25% on-site at the Mark Center (Alexandria, VA) or DoD Center - Monterey Bay (Seaside, CA).
• Work hours: 8 a.m. Eastern to 5 p.m. Pacific, Monday-Friday, excluding federal holidays or government closures.
• Incident response may require after-hours support with one-hour recall

Physical Requirements

• Reliable internet (50 Mbps down / 25 Mbps up) and a secure remote work environment.
• Reasonable accommodations will be provided as needed. (We provide reasonable accommodations to individuals with disabilities to enable them to perform the essential functions.)

Compensation: $130,000-$160,000/year

NexGen Technologies, Inc. is a leading IT services firm specializing in delivering innovative, high-quality solutions to our federal government clients. Our core competencies include IT professional support services, software development, cloud services, IT Operations, Agile project management, and GIS services.