Information Assurance (rmf) Security Specialist

RMF Execution & Compliance

• Lead and support all phases of the Risk Management Framework (RMF) process in accordance with NIST SP 800-37 and related standards.
• Develop, maintain, and update RMF documentation including:

• System Security Plans (SSPs)
• Security Assessment Reports (SARs)
• Plans of Action and Milestones (POA&Ms)
• Continuous Monitoring Strategies

• Coordinate security authorization packages for Authorization to Operate (ATO) decisions.

Security Control Implementation & Assessment

• Apply and validate security controls based on NIST SP 800-53 and organizational overlays.
• Conduct control assessments and support independent security assessments and audits.
• Identify security gaps and recommend remediation actions.

Cybersecurity Tools & Technologies

• Familiarity with current Information Assurance (IA) and cybersecurity tools such as vulnerability management and scanning tools
• Interpret scan results and drive remediation efforts with system owners and engineers.

Continuous Monitoring & Risk Management

• Support continuous monitoring programs to ensure ongoing compliance with security controls.
• Track vulnerabilities, risks, and mitigation progress through POA&M management.
• Provide risk-based recommendations to system owners and Authorizing Officials (AOs).

Collaboration & Stakeholder Engagement

• Work closely with system engineers, network administrators, program managers, and security leadership.
• Participate in security working groups, technical reviews, and compliance audits.
• Communicate security posture and risk status to technical and non-technical stakeholders.

Required:

• Active TS/SCI with a current CI Polgraph (preferrably from this client).
• BS in Computer Science, Cyber Security, or related field.
• Demonstrated hands-on experience executing the RMF lifecycle (all or most phases).
• Current, active security certification such as:

• CompTIA Security+,
• CISSP (Certified Information Systems Security Professional),
• CISM (Certified Information Security Manager),
• CIAM (Certified Identity and Access Manager).

• Familiarity with federal cybersecurity compliance environments.
• Ability to operate independently and contribute immediately upon assignment.

Desired:

• Master's Degree in Computer Science or Cyber Security.
• Experience with cloud security RMF (e.g., AWS GovCloud, Azure Government).
• Strong analytical, documentation, and communication skills.
• Prior experience supporting ATO packages in enterprise environments.

USD $190,000.00 - USD $210,000.00 /Yr.

The Markon pay range for this position is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law., Benefits Offered : Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Training and Tuition Assistance, Paid Time Off, and Holidays

Eager to join a team where your skills are valued, your growth is nurtured, and your impact is profound? Look no further than Markon, a premier consulting firm deeply dedicated to advancing our nation's most critical missions. At Markon, we don't just offer jobs - we offer opportunities for personal and professional transformation. Empowering our employees to lead, innovate, and excel, we foster an environment where new ideas are not just welcomed but celebrated. As a perennial Washington Post Top Workplace, we prioritize the well-being and success of our team members, ensuring they can bring their best selves to work. Headquartered in Falls Church, Virginia, Markon has garnered national recognition for our unwavering dedication to excellence in serving the intelligence community, as well as federal civilian and defense agencies. Our growing reach extends across 17 states, 116 countries, and 5 continents, where our team of dynamic professionals collaborates to deliver unparalleled program and project management services. Markon values people and the tremendous impact each individual can make - which is why we're consistently recognized as one of the best places to work in federal government consulting. Here, you can help solve the nation's most important challenges, surrounded by colleagues who help you grow, advance, and succeed. We are deeply dedicated to what matters - bringing out the best in each other to advance our clients' missions.