Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

GRC / NIST RMF Specialist

Temporary

Apogee Global RMS

Calverton, MD

Apogee Global RMS is seeking a GRC / NIST RMF Specialist to support federal programs requiring disciplined governance, risk, and compliance execution. This role is built for practitioners who understand the full lifecycle of NIST RMF, can translate controls into actionable engineering guidance, and can partner with federal stakeholders to drive accreditation success.

You will serve as a trusted advisor across security, engineering, and mission teams — ensuring that compliance is not a paperwork exercise but a strategic enabler of secure operations.

What You Will Lead:

  • Full lifecycle NIST RMF execution (Categorization → Continuous Monitoring)
  • Development and refinement of SSPs, POA&Ms, SARs, and control evidence packages
  • Security control assessments, gap analyses, and remediation planning
  • Advisory support for ATO readiness, audit preparation, and stakeholder coordination
  • Risk analysis and prioritization aligned to mission, system, and organizational impact
  • Collaboration with engineering teams to ensure controls are implemented effectively
  • Continuous monitoring strategy, reporting, and compliance sustainment

Requirements

Certifications:

  • CISA
  • CRISC
  • CISM
  • NIST RMF training (FedVTE or equivalent)
  • ISO 27001 Lead Auditor is a meaningful differentiator, especially for commercial‑adjacent bids

 

Technical & Functional Expertise:

  • Deep understanding of NIST 800‑53, NIST RMF, and federal security baselines
  • Experience preparing ATO packages and supporting federal accreditation processes
  • Ability to translate compliance requirements into clear, actionable engineering tasks
  • Strong writing and documentation skills for federal audiences
  • Experience working with ISSOs, ISSEs, SCA teams, and federal program leadership

Location & Clearance:

  • Must reside in the NCR (DC/MD/VA)
  • Secret clearance minimum; clearable candidates considered

Expected Skills:

  • Operates with precision, structure, and clarity
  • Understands both the technical and policy sides of federal cybersecurity
  • Can guide teams through complex accreditation processes without friction
  • Communicates confidently with auditors, assessors, and mission stakeholders
  • Thrives in high‑trust, high‑impact advisory environments

Benefits

Why Apogee:

Apogee supports federal programs in this prime engagement where governance and risk decisions directly influence mission readiness. You’ll work with senior stakeholders, shape compliance strategy, and operate in an environment that values expertise, discipline, and operational excellence.

How to Apply

For any questions (OR) to apply, please contact us at  View email address on apply.workable.com .

Apply
Vacancy posted 28 days ago
Similar jobs that could be interesting for youBased on the GRC / NIST RMF Specialist in Calverton, MD vacancy
  • GRC / NIST RMF Specialist
     ...Apogee Global RMS is seeking a GRC / NIST RMF Specialist to support federal programs requiring disciplined governance, risk, and compliance execution. This role is built for practitioners who understand the full lifecycle of NIST RMF, can translate controls into actionable... 
    Suggested

    Apogee Global RMS

    Beltsville, MD
    3 days ago
  • NIST RMF & GRC Specialist for Federal ATO
     ...Apogee Global RMS in Washington seeks a GRC / NIST RMF Specialist to enhance governance, risk, and compliance processes for federal programs. The ideal candidate will lead NIST RMF execution and develop vital strategic documents. Strong knowledge of federal security baselines... 
    Suggested

    Apogee Global RMS

    Washington DC
    17 hours ago
  • Senior ISSO: Cloud RMF & NIST Security Leader
     .... The ISSO will lead the implementation of security controls in accordance with NIST standards and prepare for independent security assessments. Responsibilities include supporting NIST RMF processes, managing security documentation, and evaluating security solutions. The... 
    Suggested

    TELOPHASE

    Lanham, MD
    17 hours ago
  • Senior ISSO - RMF/NIST Lead for Enterprise Security
     ...across secure environments. The ideal candidate will have strong experience with security operations, including Java, Maven, Git, and RMF/NIST standards. An active TS/SCI clearance with Full Scope Polygraph is required. Competitive salary between $150,000 and $200,000,... 
    Suggested
    Relocation package

    H. T. PROF Group

    Columbia, MD
    1 day ago
  • Senior RMF & ISSO Specialist — Hybrid (DC)
     ...Assessment and Authorization (A&A) support roles. Applicants should have at least 3 years of experience with RMF in Microsoft GCC-H environments and knowledge of NIST SP 800-53 and FISMA compliance. The position offers a hybrid work model requiring onsite meetings.... 
    Suggested

    Testpros

    Washington DC
    4 days ago
  • Senior ISSO - Hybrid Federal Cyber Leader (NIST/RMF)
     ...will have at least 5 years of experience in ISSO duties, including systems security assessments. Responsibilities include coordinating NIST compliance, mentoring junior staff, and advising leadership. The position supports hybrid work, with 3 days a week on client site.... 
    Flexible hours
    3 days per week

    Coalfire

    Washington DC
    17 hours ago
  • Mid-Level GRC Analyst

    $70k - $80k

     ...Mid-Level GRC Analyst Location: 1-day on-site at HQ - Silver Spring, MD Clearance Required: Public Trust Eligible Salary: $7...  ...system-level and scoped enterprise risk assessments aligned with NIST SP 800-30 methodologies. Identify threats, vulnerabilities, likelihood... 
    Apprenticeship

    IBSS

    Silver Spring, MD
    5 days ago
  • Mid-Level GRC Analyst

    $70k - $80k

     ...Job Title: Mid-Level GRC Analyst Location: 1‑day on‑site at HQ - Silver Spring, MD Clearance Required: Public Trust Eligible Salary:...  ...system‑level and scoped enterprise risk assessments aligned with NIST SP 800‑30 methodologies. Identify threats, vulnerabilities, likelihood... 
    Apprenticeship

    Creative Solutions Services, LLC

    Silver Spring, MD
    16 hours ago
  • Senior Information Assurance Specialist

    $125k - $140k

     ...seeking a Senior Information Assurance Specialist to support the analysis, implementation,...  ...development, Risk Management Framework (RMF) support, and cybersecurity compliance expertise...  ...Provide technical guidance regarding NIST SP 800-53 Rev 5 security controls and... 
    Full time
    Local area
    Flexible hours
    1 day per week

    The Copper River Family of Companies

    College Park, MD
    11 days ago
  • Senior Analyst, Cybersecurity GRC
     ...Senior Analyst, Cybersecurity GRC, Washington, DC The Senior Analyst, Cybersecurity GRC will administer the completion of compliance...  ...risk management concepts, frameworks, and standards (CSC, NIST, ISO, COBIT). - Strong understanding of information security concepts... 
    Work experience placement

    Next Step Systems LTD

    Washington DC
    1 day ago
  • Government Information Specialist SME / Privacy Lead
    Government Information Specialist SME / Privacy Lead Position Title: Government Information Specialist...  ...Records Act, FISMA, OMB Circular A-130, NIST SP 800-53 Rev 5, NIST SP 800-171 Rev 3,...  ...assessments. Working knowledge of NIST RMF, NIST SP 800-53 Rev 5, NIST SP 800-171... 

    cFocus Software Incorporated

    Washington DC
    15 hours ago
  • Senior Information Assurance Specialist

    $120k

     ...validation. Summary The Senior Information Assurance Specialist plays a pivotal role in safeguarding the cybersecurity...  ...strategies that align with DHS policies and frameworks (e.g., NIST 800-53, RMF, FISMA). Develop tools and techniques for threat detection... 
    Contract work
    Local area
    Monday to Friday

    ValidaTek

    Washington DC
    3 days ago
  • RMF / C&A Lead / Security Authorization Lead
     ...RMF / C&A Lead / Security Authorization Lead Location: Onsite - Washington DC Work authorization: US Citizen Job Summary The RMF Lead...  ...Responsibilities Lead RMF strategy and authorization roadmap Guide NIST SP 800-37 lifecycle activities Identify NIST SP 800-53 security... 

    Softthink Solutions

    Washington DC
    17 hours ago
  • Cloud Security RMF Lead - Top Secret Clearance
     ...Information Systems Security Officer (Mid-Level) in Washington, DC. This role entails leading the RMF package development for cloud systems and ensuring compliance with NIST 800-53 across AWS and Azure. The ideal candidate will have a Bachelor’s degree in Cybersecurity... 

    CGI Njoyn

    Washington DC
    1 day ago
  • Senior ISSO: Lead Cybersecurity & RMF Compliance
     ...System Security Plans and conducting security assessments. Candidates must have over 10 years of experience in cybersecurity, knowledge of NIST RMF, and the ability to obtain Top Secret/SCI clearance. Competitive compensation and strong benefits offered. #J-18808-Ljbffr... 

    Zantech

    Washington DC
    17 hours ago
  • Cybersecurity Lead Threat Defense & RMF Excellence
     ...schedules. Lead the compilation and upkeep of Risk Management Framework (RMF) artifacts to sustain and capture agency Authorizations to...  ...Professional (CISSP) credential. In-depth familiarity with NIST SP 800-53, federal compliance mandates, SIEM technologies, and incident... 
    For contractors

    E-Logic, Inc.

    Washington DC
    16 hours ago
  • RMF ISSE: Federal IT Security & Risk Lead
     ...clients. The ISSE will lead a team for Risk Management Framework (RMF) activities, ensuring systems are secure and compliant. The ideal...  ...have a Bachelor's Degree in a relevant field and experience with NIST standards. Preferred qualifications include certifications and... 

    Data Intelligence

    Washington DC
    1 day ago
  • Defensive Cybersecurity Specialist | RMF, SSPs & ISSO Path
    Secure Technologies Group is seeking eager and energetic cybersecurity professionals in Columbia, Maryland. This position supports US Government missions without the need for a clearance. Candidates will assist in developing and maintaining system security plans, ensuring...

    Secure Technologies Group LLC

    Columbia, MD
    16 hours ago
  • GRC Analyst
     ...The Governance, Risk, and Compliance (GRC) Analyst supporting federal and customer programs is responsible for evaluating, documenting...  ...Interpretation Maintain working knowledge of relevant standards such as NIST frameworks, ISO 27001, FedRAMP, CMMC, and applicable... 
    Contract work

    Nexus IT Group

    Washington DC
    1 day ago
  • GRC Analyst

    $189k - $225k

     ...About the Role The GRC Analyst, Federal & Customer Programs is responsible for the hands‑on analysis, documentation, and operational...  ...relevant to the company's regulatory and contractual posture, including NIST SP 800‑171, NIST SP 800‑53, NIST CSF, CMMC, ISO 27001, FedRAMP,... 
    Ongoing contract
    Contract work
    For subcontractor
    Work at office
    3 days per week

    GoToMeeting

    Washington DC
    16 hours ago
  • GRC Analyst
     ...In depth understanding and hand on experience with NIST 800-53, 800-36 and 800-66 frameworks. Significant experience with full cycle...  ...Analysis, Risk Register functional application via Service Now IRM/GRC environment. Significant experience with Service Now ecosystem... 

    E-Solutions

    Washington DC
    1 day ago
  • GRC Analyst: Elevate Cyber Risk & Compliance
     ...Creative Solutions Services, LLC in Silver Spring, MD, is seeking a Mid-Level GRC Analyst to support cybersecurity governance, risk management, and compliance initiatives. This role requires hands-on experience supporting compliance activities and the ability to develop... 

    Creative Solutions Services, LLC

    Silver Spring, MD
    16 hours ago
  • IA/Cybersecurity Specialist (Secret) (4499)

    $103.2k - $172k

     ...seeking Information Assurance/Cybersecurity Specialists (Junior, Mid, and Senior) with a...  ...Assist in maintaining compliance with RMF and other DoD cybersecurity frameworks...  ...operating environments Familiarity with RMF, NIST 800-53, STIGs, and cloud security principles... 
    Contract work
    Work experience placement
    H1b
    Local area

    SMX Corporation

    Washington DC
    7 days ago
  • Senior Cloud ISSO - RMF & Cloud Security Lead
     ...information systems. The ideal candidate has extensive experience in cloud security, risk management, and knowledge of frameworks like RMF and NIST. Required qualifications include a Bachelor’s degree in Cybersecurity and at least 9 years of experience, including... 

    Bart & Associates, LLC

    Washington DC
    4 days ago
  • Senior Cloud ISSO - RMF/NIST Security Lead
    Bart & Associates, Inc. is looking for a Senior Cloud ISSO to oversee cybersecurity compliance for cloud and hybrid systems. The ideal candidate will have over 9 years in cybersecurity, particularly as an ISSO, with strong expertise in cloud platforms like AWS or Azure....

    Bart & Associates, Inc.

    Washington DC
    1 day ago
  • Senior Navy Cybersecurity & RMF Specialist
     ...A leading employee-owned company in Washington, DC is seeking a Senior Information Systems Security Specialist. The role requires over 10 years of experience in Navy Cybersecurity programs, strong knowledge of Cyber Security and Risk Management Framework. A Bachelor’s... 

    International Executive Service Corps

    Washington DC
    17 hours ago
  • Senior Information Technology Specialist (Cybersecurity/ENTARCH)
     ...position is for a Senior Information Technology Specialist (Cybersecurity/ENTARCH) located in the...  ...FISMA, CISA, OMB, Executive Orders, and NIST frameworks. Operating with substantial...  ...alignment with NIST SP 800 53, SP 800 207, RMF, and OMB/CISA directives. Lead major... 
    Full time
    Part time
    Work experience placement
    Work at office
    Relocation

    Commander, Navy Installations Command

    Washington DC
    2 days ago
  • Cybersecurity Specialist 4

    $124.88k - $187.32k

     ...alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security...  ...Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation Awareness of NIST Special Publication... 

    M.C. Dean, Inc.

    Washington DC
    3 days ago
  • Cybersecurity Specialist
     ...Job Description Salary: Cybersecurity Specialist- Public Trust Level 5 or Higher Security...  ...support enterprise Risk Management Framework (RMF) activities, cloud security operations,...  ...lifecycle activities in accordance with NIST SP 800-37/30/53. Support compliance... 
    Contract work
    For contractors
    Work at office

    enGenius Consulting Group

    Hyattsville, MD
    7 days ago
  • Federal GRC & Contracts Analyst
    GoTo Meeting is seeking a GRC Analyst, Federal & Customer Programs, to manage security governance, risk, and compliance obligations. Responsibilities...  ...roles, strong technical writing skills, and familiarity with NIST frameworks. This position supports ongoing audits and assessments... 

    GoTo Meeting

    Washington DC
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to GRC / NIST RMF Specialist. Be the first to apply!

Related searches