Deputy Cybersecurity Governance Lead Job in Washington

4624 IT & Software Developer jobs in the US

Company Size

5k+

Company Type

Services

Exp Level

Lead

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Bachelors degree and a minimum of 10 years in IT security, GRC, or systems security engineering experience, or a Masters degree with at least 8 years in the field. - Capability to secure and maintain a public trust requiring U.S. Citizenship. - Proven track record in leading or managing RMF and GRC operations across various systems or enterprise environments. - In-depth knowledge of NIST RMF, NIST SP 800-53, FISMA, and federal security directives including EO 14028 and OMB M-22-09. - Experience administering ATO processes, authorization documentation (SSP, SAR, POA&M, SIA), and continuous monitoring frameworks. - Demonstrated ability to support federal audits, including PBC responses, audit data collection, and issue remediation. - Capability to coordinate among engineering, operational, and compliance teams in intricate settings. - Skill in enforcing accountability and driving outcomes across diverse stakeholders without direct oversight. - Solid understanding of enterprise IT ecosystems, including cloud (AWS, Azure, Google Cloud Platform) and hybrid setups. - Familiarity with enterprise applications like Microsoft 365, Azure AD, Cisco, and Oracle. - Strong skills in documentation, reporting, and communication, particularly in articulating intricate technical issues to non-technical audiences. - Proficient in Microsoft Office Suite (Word, Excel, PowerPoint, SharePoint).

Technologies

Excel

Microsoft 365

Office 365

Responsibilities

- Provide daily operational direction for GRC workstreams, including Risk Management, Assessment & Authorization, and Audit Support. - Supervise the creation, review, and quality assurance of Security Authorization packages, including SSPs, SARs, and POA&Ms for multiple systems. - Organize and prepare systems for Security Control Assessments (SCA), ensuring all documentation is complete, precise, and audit-ready. - Oversee Security Impact Analyses (SIAs) related to system modifications, modernization projects, and new system integrations. - Ensure security controls are effectively implemented and monitored in alignment with NIST SP 800-53, RMF, and agency security protocols. - Lead the lifecycle management of POA&Ms, covering development, progress tracking, remediation validation, and closure reviews. - Manage Risk Acceptance procedures, ensuring proper documentation, justification, and alignment with system risk profiles. - Direct and maintain ongoing monitoring activities to assure control efficacy and continuous authorization compliance. - Coordinate audit support tasks, including PBC responses, audit data requests, audit presentation development, and remediation of audit findings. - Oversee the preparation of audit response packages (RCF, RAC, PSR) and assist with FISMA and A-130 reporting obligations. - Act as a primary contact for federal stakeholders, including ISSOs, Authorizing Officials, and Security Control Assessors. - Facilitate collaboration between system owners, Security Operations, Vulnerability Management, and Security Tools teams for synchronized security efforts. - Provide guidance and oversight to ISSO support and business area representatives to ensure the effective fulfillment of responsibilities. - Set and enforce quality standards for all GRC deliverables to ensure documentation accurately represents actual system implementations. - Manage task tracking, prioritization, and execution across team activities to ensure contract obligations and timelines are met. - Identify procedural gaps and implement enhancements to improve efficiency, reduce RMF cycle times, and boost audit preparedness. - Create and present executive-level reports, risk briefings, and status updates to both internal and external stakeholders.

Description

We are SAIC, a leading technology integrator that delivers comprehensive life cycle services and solutions across technical, engineering, intelligence, and enterprise IT markets. We pride ourselves on redefining ingenuity through our profound customer and sector expertise, enabling us to deliver systems engineering and integration solutions for large-scale, complex projects. With approximately 15,000 dedicated employees, our mission-driven culture focuses on serving clients in the U.S. federal government. Our headquarters is located in Reston, Virginia, and we generate annual revenues of around $4.5 billion. We offer competitive benefits, and our team is committed to excellence and integrity.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USSecurity Engineer jobs in the USSecurity Engineer jobs Washington, DC

You can find Cyber Security Engineer salaries in the United States here.

How many Cyber Security Engineer jobs are in the United States?

Currently, there are 4624 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the US a good place for Cyber Security Engineers?

The US is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the United States?

GE Aerospace, D3 Security Management Systems, Execusource, Inc, Peraton, Triumph Tech, LLC, Dynamic Animation Systems, Inc., Rocket EMS among others, are currently hiring for Security roles in the United States.

The company with most openings is Judge Group, Inc. as they are hiring for 362 different Cyber Security Engineer jobs in the United States. They are probably quite committed to find good Cyber Security Engineers.