Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

IT and Cyber Risk Auditor

Gdit

Public Trust: None
Requisition Type: Regular
Your Impact

Own your opportunity to be at the center of GDIT’s business operations. Make an impact by collaborating across functions to make mission success achievable.

Job Description

Help safeguard critical government systems by applying your hands-on ISSM/ISSO experience to security governance, risk evaluation, and compliance oversight. As an IT and Cyber Risk Auditor at GDIT, you will leverage your background managing RMF controls, system documentation, and continuous monitoring activities to deliver thorough, accurate, and mission‑focused security assessments.

This role is ideal for cybersecurity professionals who have previously served as an ISSM or ISSO and are seeking to transition into a dedicated risk, audit, and compliance position where they can influence security posture across multiple systems and programs.


MEANINGFUL WORK AND PERSONAL IMPACT

As an IT and Cyber Risk Auditor, the work you do at GDIT will have a direct and measurable impact on our customer’s mission. You’ll help ensure the integrity, security, and compliance of their IT systems by identifying potential risks, validating critical controls, and supporting continuous improvement efforts. Your work will enhance operational resilience and enable the customer to execute their mission with confidence.


● Conduct comprehensive security audits and RMF control assessments in accordance with DCSA, JSIG, and SAP security requirements, leveraging prior ISSO/ISSM experience.

● Review, validate, and improve security documentation and artifacts such as SSPs, POA&Ms, Continuous Monitoring outputs, and other evidence required by RMF and DCSA assessment standards.

● Develop, implement, and oversee operational information system security policies and guidelines aligned with the Risk Management Framework (RMF), JSIG, and applicable DCSA directives.

● Evaluate system security controls for effectiveness, completeness, and compliance with NIST SP 800‑53, DCSA/DoW requirements, JSIG standards, and internal organizational policies.

● Collaborate with ISSOs, ISSMs, SAP security personnel, and technical teams to analyze findings, recommend remediation actions, and ensure timely correction of identified vulnerabilities.

● Analyze system changes, configuration updates, and vulnerability data to determine authorization impacts, risk‑level changes, and required updates under RMF and JSIG/SAP processes.

● Support ongoing ATO and SAP authorization maintenance by tracking assessments, evidence submissions, and documentation required throughout the RMF and JSIG lifecycles.

● Prepare and deliver clear, risk‑focused briefings to system owners, DCSA assessors, SAP authorities, and other stakeholders regarding compliance status, audit results, and security‑related decisions.


WHAT YOU’LL NEED TO SUCCEED
Bring your cyber expertise and drive for innovation to GDIT. The IT and Cyber Risk Auditor must have:
● Education: Bachelors degree
● Experience: 2+ years of related experience as a prior ISSO/ISSM. In lieu of degree, additional 4+ years of work experience/training/education will be required

● Certifications: IAT II (Security +, SSCP, CCNA Security)

● Technical skills: Strong understanding of NIST SP 800-53, DoW cybersecurity requirements, and control implementation/assessment practices. Familiarity with Windows/Linux environments, vulnerability tools, and security baselines.

● Prior SAP experience desired
● Security clearance: Must have an active Top Secret clearance in order to be considered, and the ability to obtain and maintain TS/SCI clearance.

● US citizenship required
● Role requirements: Onsite, 5 days/week in Falls Church, VA office location


GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
● Growth: AI-powered career tool that identifies career steps and learning opportunities.
● Support: An internal mobility team focused on helping you achieve your career goals.
● Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off.
● Community: Award-winning culture of innovation and a military-friendly workplace.

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

Work Requirements

Years of Experience

2 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

CompTIA Security+ CE | CompTIA - CompTIA

Travel Required

Less than 10%

Citizenship

U.S. Citizenship Required

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the IT and Cyber Risk Auditor in Falls Church, VA vacancy
  • $81.35k - $110.06k

     ...Top Secret/SCI Public Trust/Other Required: None Job Family: Cyber and IT Risk Management Job Qualifications: Skills: DISA STIG, NIST Risk...  ...evaluation, and compliance oversight. As an IT and Cyber Risk Auditor at GDIT, you will leverage your background managing RMF... 
    Cyber
    Risk
    Full time
    Temporary work
    Work at office
    Immediate start
    Remote work
    Worldwide
    Flexible hours

    General Dynamics Information Technology

    Falls Church, VA
    16 hours ago
  • Capital One is seeking a Principal Auditor for Cyber, Risk, and Analysis Technology Audit. The role focuses on evaluating technology risks and leading audits of critical functions including cloud technologies. The ideal candidate will have robust auditing experience and... 
    Cyber
    Risk

    Capital One

    Mc Lean, VA
    4 days ago
  • Phase2 Technology is seeking a Cybersecurity Risk Analyst in Alexandria, Virginia, to help clients understand and mitigate their cyber risks. You'll work closely with enterprises to develop tailored risk management strategies and deliver actionable insights through presentations... 
    Cyber
    Risk

    Phase2 Technology

    Alexandria, VA
    4 days ago
  • Phase2 Technology in McLean, Virginia, is hiring an Enterprise Cybersecurity and IT Risk Management Operations Lead to oversee and direct daily operations in cybersecurity and IT risk management. Your key responsibilities will include managing workflows and collaborations... 
    Cyber
    Risk

    Phase2 Technology

    Mc Lean, VA
    3 days ago
  • A leading financial services firm in McLean is seeking a Manager to join their Cyber Tech & Product Risk team. The role involves applying risk management expertise to enhance the organization's cyber risk profile and drive strategic change. Responsibilities include risk... 
    Cyber
    Risk

    Capital One

    Mc Lean, VA
    2 days ago
  • $131.3k - $149.8k

    Capital One seeks a Cyber Risk Manager in McLean, VA, to enhance their security posture. The role emphasizes collaboration with technical teams and thorough understanding of risk frameworks. Ideal candidates will have at least 3 years in cybersecurity, strong knowledge... 
    Cyber
    Risk

    Capital One

    Mc Lean, VA
    4 days ago
  • Phase2 Technology in Alexandria, VA is hiring a Risk Assessment Analyst to assess cyber threats and develop mitigation plans for federal clients. You will utilize your 5+ years of experience, including knowledge of cybersecurity risk assessments, to collaborate with industry... 
    Cyber
    Risk

    Phase2 Technology

    Alexandria, VA
    16 hours ago
  • Booz Allen Hamilton is seeking an information security risk specialist in the United States to turn complex cyber threats into actionable plans. You will work with SMEs to assess risks, develop mitigation strategies, and produce presentations and briefing decks for senior... 
    Cyber
    Risk

    Booz Allen Hamilton

    Alexandria, VA
    2 days ago
  • Booz Allen Hamilton is seeking an Information Security Risk Specialist in Alexandria, Virginia. This role involves assessing cybersecurity...  ...benefits package and the opportunity to work on national cyber infrastructure protection. #J-18808-Ljbffr Booz Allen Hamilton
    Cyber
    Risk

    Booz Allen Hamilton

    Alexandria, VA
    3 days ago
  • Capital One in McLean, VA seeks a Manager of Cyber Audits and Exams to coordinate audit, regulatory, and executive engagements. You will...  ...organization. You will lead planning, reporting artifacts, and risk remediation initiatives, while communicating effectively with... 
    Cyber
    Risk

    Capital One

    Mc Lean, VA
    1 day ago
  •  ...Communications Incorporated is seeking an experienced Cybersecurity Analyst with 4+ years in cyber security analysis to support metrics analysis, incident response, and risk mitigation. The role includes VRAM duties, vulnerability baseline uploads, and working with cyber... 
    Cyber
    Risk

    Leader-Communications-Incorporate

    Alexandria, VA
    1 day ago
  • RSM US LLP is hiring a Temporary Risk Consulting Analyst to assist in running security operations for clients across industries. The role emphasizes investigating incidents, analyzing alerts, and supporting remediation in a fast-moving SOC environment. The position requires... 
    Cyber
    Risk
    Temporary work

    Rsm Us Llp

    Mc Lean, VA
    1 day ago
  • MartinFederal Consulting, LLC is seeking a Lead Cyber Security Engineer in Arlington, Virginia, to provide technical leadership in cybersecurity...  ...leading implementation of cybersecurity solutions, conducting risk assessments, and mentoring technical teams. A Master's Degree... 
    Cyber
    Risk

    MartinFederal Consulting, LLC

    Arlington, VA
    15 days ago
  • $131.3k - $149.8k

    Capital One National Association is seeking a Principal Risk Specialist, Tech & Cyber Risk in McLean, VA. This high-impact role involves driving end-to-end risk management and collaborating with technology stakeholders to identify and mitigate risks. The ideal candidate... 
    Cyber
    Risk

    Capital One National Association

    Mc Lean, VA
    1 day ago
  • Capital One is looking for a Senior Cyber Program Manager in McLean, VA, to lead the Cyber Strategy and Reporting team. This role involves managing cyber risks, developing executive-level reporting, and facilitating communication across diverse stakeholder groups. The ideal... 
    Cyber
    Risk
    Full time

    Capital One

    Mc Lean, VA
    3 days ago
  •  ...role. Nightwing provides technically advanced full-spectrum cyber, data operations, systems integration and intelligence mission support...  ...cloud security posture management, compliance validation, and risk mitigation for cloud-enabled capabilities.  Responsibilities:... 
    Cyber
    Risk
    Contract work
    Local area
    Immediate start

    Nightwing

    Arlington, VA
    11 days ago
  •  ...and technical support. The successful candidate will manage programmatic risk analysis and coordinate DARPA-funded testing activities. The ideal candidate should have expertise in offensive cyber operations, vulnerability research, and reverse engineering. A TS/SCI clearance... 
    Cyber
    Risk

    Blue Sky Innovators Inc

    Arlington, VA
    4 days ago
  • A growing decision analytics firm is seeking a Junior Cyber Risk Data Engineer/Analyst in Arlington, VA. This role emphasizes data-driven capabilities in cyber risk management, where you'll manage risk assessment data, connect with external threat databases, and assist... 
    Cyber
    Risk

    Technomics, Inc.

    Arlington, VA
    1 day ago
  • Information Technology Senior Management Forum is seeking a Cyber Program Manager to oversee key cybersecurity initiatives within a fast...  ...skills. This position requires a proactive approach to identify risks and contributing effectively to cyber initiatives. #J-18808-... 
    Cyber
    Risk

    Information Technology Senior Management Forum

    Mc Lean, VA
    4 days ago
  • $131.3k - $237.35k

     ...role includes overall management, quality assurance, and coordination across task leads to ensure timely deliverables and effective risk communication. The ideal candidate will have experience in customer-facing contracts, produce executive-level briefings, and maintain... 
    Cyber
    Risk
    For contractors

    Leidos

    Arlington, VA
    16 hours ago
  •  ...Requisition #: 1617 Job Title: Cyber Threat Intelligence Analyst Location: Hybrid, Arlington, VA Clearance Level: Top Secret, Must Have...  ...(TTPs) used in cyberattacks. Assess vulnerabilities and risks to the organization based on current threat landscape. Produce intelligence... 
    Cyber
    Risk
    2 days per week

    Agile Defense

    Arlington, VA
    2 days ago
  • Peraton is seeking a Notification Specialist in Arlington, VA, to monitor cybersecurity incidents and provide risk briefings to government entities. Candidates must possess a Bachelor’s degree, at least 3 years of experience, and a Top Secret security clearance. Responsibilities... 
    Cyber
    Risk

    Peraton

    Arlington, VA
    1 day ago
  •  ...to the Department of Homeland Security from its Alexandria, VA HQ. The role involves conducting research on evolving cybersecurity risks and supporting case reviews and investigations. The ideal candidate should have an active TS/SCI clearance, a Bachelor’s degree in a... 
    Cyber
    Risk

    Systems Planning and Analysis, Inc.

    Alexandria, VA
    2 days ago
  • $151.9k - $173.4k

    Capital One is looking for a motivated Program Manager to join their Cyber Execution and Transformation team in McLean, VA. You will play a crucial role in driving key cyber initiatives, using your problem-solving skills and technical background to oversee complex projects... 
    Cyber
    Risk
    Full time

    Capital One

    Mc Lean, VA
    1 day ago
  •  ...provides technically advanced full-spectrum cyber, data operations, systems integration and...  ...development  - Knowledge in various IT fields that include but are not limited to...  ...- Experience and/or familiarity of the Risk Management Framework (RMF) and security and... 
    Cyber
    Risk
    Contract work
    Immediate start

    Nightwing

    Arlington, VA
    11 days ago
  • $119.4k - $136.2k

    ## Principal Auditor - Cyber, Risk and Analysis Technology Audit (Hybrid)Applylocations: McLean, VA: Charlotte, NC: Richmond, VA: New York, NY:...  ...Information Systems Auditor (CISA)* 4+ years of experience with IT control frameworks* 2+ years of experience in planning and... 
    Cyber
    Risk
    Full time
    Part time
    Local area
    3 days per week

    Capital One

    Mc Lean, VA
    4 days ago
  • $62k - $141k

     ...Job Number: R0242703 Cybersecurity Risk Analyst The Opportunity Cyber threats are everywhere, and the constantly evolving nature of these threats can...  ...including DoDI and DoDD, and Joint Publications Knowledge of DoW IT, Cybersecurity, Supply Chain Risk Management (SCRM), and... 
    Cyber
    Risk
    Contract work
    Local area

    Phase2 Technology

    Alexandria, VA
    4 days ago
  • $55.2k - $126k

    Phase2 Technology is seeking a Cyber Strategic Planning and Development Specialist in Alexandria, Virginia. In this role, you will assess...  ...of Defense's current cyber policies, identify areas of risk, and guide clients in developing a strategic cyber roadmap to enhance... 
    Cyber
    Risk
    Remote work

    Phase2 Technology

    Alexandria, VA
    2 days ago
  •  ...a related field and at least 8 years of relevant experience, along with an active TS/SCI clearance. This position will leverage knowledge in network security architecture and various protocols to mitigate risks and enhance defense capabilities. #J-18808-Ljbffr Nightwing
    Cyber
    Risk

    Nightwing

    Arlington, VA
    2 days ago
  • $107.9k - $195.05k

     ...team to identify, assess, and prioritize risks to DISA and DoD mission partners, as well...  ...Configuration Management documentation.  Conduct cyber situational awareness activities and...  ....  Recommend and implement changes to IT systems in accordance with DoD directives.... 
    Cyber
    Risk
    Local area
    Immediate start

    Leidos

    Arlington, VA
    16 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to IT and Cyber Risk Auditor. Be the first to apply!