Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

GRC / NIST RMF Specialist

Apogee Global RMS

Beltsville, MD

Apogee Global RMS is seeking a GRC / NIST RMF Specialist to support federal programs requiring disciplined governance, risk, and compliance execution. This role is built for practitioners who understand the full lifecycle of NIST RMF, can translate controls into actionable engineering guidance, and can partner with federal stakeholders to drive accreditation success.

You will serve as a trusted advisor across security, engineering, and mission teams — ensuring that compliance is not a paperwork exercise but a strategic enabler of secure operations.

What You Will Lead:

  • Full lifecycle NIST RMF execution (Categorization → Continuous Monitoring)
  • Development and refinement of SSPs, POA&Ms, SARs, and control evidence packages
  • Security control assessments, gap analyses, and remediation planning
  • Advisory support for ATO readiness, audit preparation, and stakeholder coordination
  • Risk analysis and prioritization aligned to mission, system, and organizational impact
  • Collaboration with engineering teams to ensure controls are implemented effectively
  • Continuous monitoring strategy, reporting, and compliance sustainment

Requirements

Certifications:

  • CISA
  • CRISC
  • CISM
  • NIST RMF training (FedVTE or equivalent)
  • ISO 27001 Lead Auditor is a meaningful differentiator, especially for commercial‑adjacent bids

Technical & Functional Expertise:

  • Deep understanding of NIST 800‑53, NIST RMF, and federal security baselines
  • Experience preparing ATO packages and supporting federal accreditation processes
  • Ability to translate compliance requirements into clear, actionable engineering tasks
  • Strong writing and documentation skills for federal audiences
  • Experience working with ISSOs, ISSEs, SCA teams, and federal program leadership

Location & Clearance:

  • Must reside in the NCR (DC/MD/VA)
  • Secret clearance minimum; clearable candidates considered

Expected Skills:

  • Operates with precision, structure, and clarity
  • Understands both the technical and policy sides of federal cybersecurity
  • Can guide teams through complex accreditation processes without friction
  • Communicates confidently with auditors, assessors, and mission stakeholders
  • Thrives in high‑trust, high‑impact advisory environments

Benefits

Why Apogee:

Apogee supports federal programs in this prime engagement where governance and risk decisions directly influence mission readiness. You’ll work with senior stakeholders, shape compliance strategy, and operate in an environment that values expertise, discipline, and operational excellence.

How to Apply

For any questions (OR) to apply, please contact us at  View email address on click.appcast.io .

Apply
Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the GRC / NIST RMF Specialist in Beltsville, MD vacancy
  • Senior ISSO: Cloud RMF & NIST Security Leader
     .... The ISSO will lead the implementation of security controls in accordance with NIST standards and prepare for independent security assessments. Responsibilities include supporting NIST RMF processes, managing security documentation, and evaluating security solutions. The... 
    Suggested

    Telophase Corporation

    Lanham, MD
    3 days ago
  • Senior RMF & ISSO Specialist — Hybrid (DC)
     ...Assessment and Authorization (A&A) support roles. Applicants should have at least 3 years of experience with RMF in Microsoft GCC-H environments and knowledge of NIST SP 800-53 and FISMA compliance. The position offers a hybrid work model requiring onsite meetings.... 
    Suggested

    Testpros

    Washington DC
    5 days ago
  • Senior ISSO: RMF & ATO Specialist for Federal Systems

    $105.1k - $231.1k

     ...Ideal candidates will have at least 15 years of experience in information security, a Secret security clearance, and expertise in RMF and NIST standards. This position offers a competitive salary range of $105,100 to $231,100, alongside comprehensive benefits. #J-18808-... 
    Suggested
    Work at office

    CACI International Inc.

    Washington DC
    5 days ago
  • Senior ISSO - Hybrid Federal Cyber Leader (NIST/RMF)
     ...will have at least 5 years of experience in ISSO duties, including systems security assessments. Responsibilities include coordinating NIST compliance, mentoring junior staff, and advising leadership. The position supports hybrid work, with 3 days a week on client site.... 
    Suggested
    Flexible hours
    3 days per week

    Coalfire

    Washington DC
    2 days ago
  • RMF Specialist: DoD Cybersecurity & Risk Management
    NV5, Inc. is seeking a Risk Management Framework (RMF) Specialist in Washington, DC to oversee cybersecurity processes and ensure compliance with DoD and Air Force policies. The role involves implementing RMF for Air Force information systems and conducting thorough risk... 
    Suggested

    NV5, Inc.

    Washington DC
    4 days ago
  • Senior Analyst, Cybersecurity GRC
     ...Senior Analyst, Cybersecurity GRC, Washington, DC The Senior Analyst, Cybersecurity GRC will administer the completion of compliance...  ...risk management concepts, frameworks, and standards (CSC, NIST, ISO, COBIT). Strong understanding of information security concepts... 
    Work experience placement

    NextStep

    Washington DC
    4 days ago
  • Senior ISSO: Lead Cybersecurity & RMF Compliance
     ...Security Plans and conducting security assessments. Candidates must have over 10 years of experience in cybersecurity, knowledge of NIST RMF, and the ability to obtain Top Secret/SCI clearance. Competitive compensation and strong benefits offered. #J-18808-Ljbffr Zantech

    Zantech

    Washington DC
    2 days ago
  • Senior Cloud ISSO - RMF & Cloud Security Lead
     ...information systems. The ideal candidate has extensive experience in cloud security, risk management, and knowledge of frameworks like RMF and NIST. Required qualifications include a Bachelor’s degree in Cybersecurity and at least 9 years of experience, including... 

    Bart & Associates, LLC

    Washington DC
    5 days ago
  • IGAMING Payments & Investigation Specialist
     ...methodologies, policies, and standards. Working knowledge of common security impacted regulations and/or standards such as ISO/IEC 27001/2, NIST, Sarbanes-Oxley. Experience with audit processes and disciplines including third party risk management. Experience with... 
    Local area

    Boyd Gaming

    Laurel, MD
    5 days ago
  • Cybersecurity Specialist 4

    $124.88k - $187.32k

     ...alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security...  ...Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation Awareness of NIST Special Publication... 

    M.C. Dean, Inc.

    Washington DC
    4 days ago
  • GRC Analyst
     ...The Governance, Risk, and Compliance (GRC) Analyst supporting federal and customer programs is responsible for evaluating, documenting...  ...Interpretation Maintain working knowledge of relevant standards such as NIST frameworks, ISO 27001, FedRAMP, CMMC, and applicable... 
    Contract work

    Nexus IT Group

    Washington DC
    2 days ago
  • IA/Cybersecurity Specialist (Secret) (4499)

    $103.2k - $172k

     ...seeking Information Assurance/Cybersecurity Specialists (Junior, Mid, and Senior) with a...  ...Assist in maintaining compliance with RMF and other DoD cybersecurity frameworks...  ...operating environments Familiarity with RMF, NIST 800-53, STIGs, and cloud security principles... 
    Contract work
    Work experience placement
    H1b
    Local area

    SMX Corporation

    Washington DC
    8 days ago
  • SME Document Management Specialist
     ...growing company. SME Document Management Specialist The SME Document Management...  ...assurance of all deliverables under the AI RMF support program. This role ensures consistency...  ...and artifacts Ensure alignment with NIST templates, standards, and style guides... 

    AMA CONSULTING

    Laurel, MD
    5 days ago
  • RMF A&A Analyst — Navy Cybersecurity & ATO Lead

    $107.9k - $195.05k

    Join Leidos as a RMF Assessment & Authorization Analyst, supporting the Navy's Synthetic Signature Generation program. Your key role involves ensuring the security of advanced simulation systems, essential for Navy operations. This position requires a Bachelor's degree... 

    Leidos

    Bethesda, MD
    5 days ago
  • Mid-Level GRC Analyst

    $70k - $80k

     ...Mid-Level GRC Analyst Location: 1-day on-site at HQ - Silver Spring, MD Clearance Required: Public Trust Eligible Salary: $7...  ...system-level and scoped enterprise risk assessments aligned with NIST SP 800-30 methodologies. Identify threats, vulnerabilities, likelihood... 
    Apprenticeship

    IBSS

    Silver Spring, MD
    1 day ago
  • FedRAMP Advisory Specialist I - GRC & Client Delivery
    Diligent-14787b60 is looking for an Advisory Specialist I to join their Services team in Washington, D.C. This role involves delivering audit and compliance solutions to clients while fostering a collaborative environment. Responsibilities include engaging with clients... 

    Diligent-14787b60

    Washington DC
    5 days ago
  • Cybersecurity Assurance Specialist W/Secret Clearance

    $95k - $150k

     ...Qualifications We are seeking a Cybersecurity Assurance Specialist to join our TekSynap Defense team....  ...of experience working with DoDI 8500.2 or NIST SP 800-53 security controls. Strong knowledge of Risk Management Framework (RMF) principles and processes. Proficiency... 
    Full time
    Contract work
    Temporary work
    Work at office
    Local area
    Remote work
    Monday to Friday
    Weekend work
    Day shift
    Afternoon shift

    TekSynap

    Washington DC
    1 day ago
  • GRC Analyst

    $189k - $225k

    About the Role The GRC Analyst, Federal & Customer Programs is responsible for the hands‑on analysis, documentation, and operational execution...  ...to the company's regulatory and contractual posture, including NIST SP 800‑171, NIST SP 800‑53, NIST CSF, CMMC, ISO 27001, FedRAMP,... 
    Ongoing contract
    Contract work
    For subcontractor
    Work at office
    3 days per week

    GoTo Meeting

    Washington DC
    5 days ago
  • Senior Navy Cybersecurity & RMF Specialist
    A leading employee-owned company in Washington, DC is seeking a Senior Information Systems Security Specialist. The role requires over 10 years of experience in Navy Cybersecurity programs, strong knowledge of Cyber Security and Risk Management Framework. A Bachelor’s... 

    International Executive Service Corps

    Washington DC
    1 day ago
  • Senior Associate/Privacy Specialist (Forensic Services practice)

    $130k - $152.5k

     ...Senior Associate/Privacy Specialist (Forensic Services Practice) CRA is a leading global consulting firm that provides independent economic...  ...and established compliance frameworks (CCPA/CPRA, GDPR, HIPAA, NIST, etc.) Translate regulatory requirements into clear... 
    Work at office
    Work from home
    3 days per week

    Charles River Associates

    Washington DC
    13 days ago
  • Document Control Specialist (Bluebeam Specialist)
     ...EBA Engineering, Inc. (EBA) is seeking a highly organized and detail-oriented Document Control (Bluebeam Specialist) to support project teams by managing and maintaining construction documentation throughout the project lifecycle. This individual will play an important... 
    Temporary work
    For contractors
    For subcontractor
    Work at office
    Flexible hours

    PSI Services

    Laurel, MD
    2 days ago
  • Food Specialist
     ...Job Description Job Description Title: Full-time Food Service Specialist/ Direct Support Professional Salary: 21.00 hourly Schedule: Monday, Friday, 8:00 am – 4:00 pm. POSITION SUMMARY: The Food Serve Safe specialist is responsible for preparing, ordering... 
    Hourly pay
    Full time
    Monday to Friday

    Calmra Inc

    Laurel, MD
    21 days ago
  • GRC Analyst: Cloud Security, Compliance & Risk Lead
    Neier Inc. is looking for a GRC Analyst to enhance their security compliance program. You will lead compliance efforts for CMMC, manage complex control frameworks, and design automation solutions to streamline risk assessments. The ideal candidate has over 5 years of experience... 
    Flexible hours

    Neier Inc.

    Washington DC
    5 days ago
  • Governance, Risk, & Compliance (GRC) Analyst
    Governance, Risk, & Compliance (GRC) Analyst Washington, DC Remote Full-Time About This Role As a GRC Analyst, you will help organizations...  ...guide them through compliance frameworks including HIPAA, SOC 2, NIST, and more. Responsibilities • Conduct security assessments and... 
    Full time
    Remote work

    Districttechgroup

    Washington DC
    2 days ago
  • Requirements Analyst (Faculty Specialist)

    $75k - $95k

     ...software possible. Our team is composed of application developers, analysts, UX designers, data scientists, IT, quality assurance specialists, and customer support operating in an Agile environment. Our office is in College Park near the University of Maryland, easily... 
    Live in
    Work at office
    Local area
    Remote work
    Flexible hours

    University of Maryland

    College Park, MD
    1 day ago
  • Sr. CI Analyst SCRM (CI Specialist)
    Sr. CI Analyst SCRM (CI Specialist) - (2831) Location: College Park, MD 20737 US (Primary) Prescient Edge is seeking a Sr. CI Analyst SCRM (CI Specialist) to support a Federal Government client. Benefits A competitive salary with performance bonus opportunities. Comprehensive... 
    Work at office

    Prescient Edge

    College Park, MD
    5 days ago
  • Sr. Analyst - SCRM

    $90.78k

     ...889 considerations), customer security requirements (e.g., NIST-based controls and RMF/ATO expectations where applicable), and other federal directives...  ...considerations (e.g., Section 889). ~ Experience using GRC/TPRM tooling to manage supplier inventories, risk... 
    Contract work
    For subcontractor
    Work at office

    MAXIMUS

    Washington DC
    7 days ago
  • Grants Specialist: Lead MTI Research Finance & Proposals

    $75.72k - $90.86k

    Usmd at the University of Maryland College Park is seeking a Grants Specialist to manage sponsored research administration for the Maryland Transportation Institute (MTI). The role involves overseeing pre- and post-award activities, ensuring compliance, and providing excellent... 

    Usmd

    College Park, MD
    5 days ago
  • Summer Project Support Specialist - 3D Printing & Coordination
    ASRC Federal in Greenbelt, MD is looking for a Project Support Specialist - Temporary Summer Hire to assist with a NASA contract. Responsibilities include administrative support, developing 3D models for printing, and coordinating project milestones. The ideal candidate... 
    Contract work
    Temporary work
    Summer work

    ASRC Federal

    Greenbelt, MD
    2 days ago
  • Application Compliance & Security Lead

    $100k

     ...dedicated developers, information protection specialists, and compliance experts who are...  ...practices and helping teams navigate CMMC, NIST 800-171, SSDF, and DFARS requirements....  ...process bottlenecks by collaborating with GRC and InfoSec teams, and maintain compliance... 
    Temporary work
    For contractors
    Work experience placement
    Relocation package
    Flexible hours
    Shift work

    Johns Hopkins Applied Physics Laboratory

    Laurel, MD
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to GRC / NIST RMF Specialist. Be the first to apply!

Related searches