We are seeking a seasoned Security Governance/Risk professional to support and strengthen enterprise security governance for Federal and DoD customers. This role is responsible for performing complex risk analyses, establishing and advising on Information Assurance and security requirements, and ensuring alignment with Federal frameworks such as NIST, RMF, FedRAMP, and DoD requirements. The successful candidate will collaborate closely with enterprise and project ISSOs, customers, and business teams, translating Federal security requirements into practical, business-aligned solutions. Demonstrated experience supporting Federal government and DoD environments is essential for success in this role.
Essential Duties and Responsibilities:
- Perform complex risk analyses and risk assessment.
- Establish and satisfy Information Assurance (IA) and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
- Support customers in the development and implementation of doctrine and policies.
- Advise information system owners on client/project security policies and requirements for systems.
- Keep abreast of emerging security technologies and make appropriate recommendations regarding the enhancement of the security posture of systems and their implementation.
- Collaborate with the Enterprise (Shared Services) ISSO to ensure proper alignment of organizational governance with Federal and DoD customers.
- Collaborate with project ISSO’s (existing contracts) and Business Development and Capture Teams to ensure proper alignment of organizational governance with existing and prospective Federal and DoD customers.
- Assist the Enterprise (Shared Services) ISSO with application of security policies to shared services supporting Federal and DoD customers.
- Recommend enhancements that align governance with Federal and DoD customers.
- Support the enhancement and on-going management of governance activities from a Federal perspective, including vendor assessments, annual enterprise risk assessments, enterprise risk registers, security awareness and training, and maintenance of a GRC
Minimum Requirements
- Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required.
- Bachelor's Degree in related field.
- 5-7 years of relevant professional experience required.
- Equivalent combination of education and experience considered in lieu of degree.
Additional Minimum Requirements:
- 7+ of security governance development and management for a corporate organization supporting Federal and DoD customers.
- Experience supporting security governance for organizations using FedRAMP CSO’s as it pertains to system-specific and hybrid controls.
- RMF and A&A experience desired
- Demonstrated experience in cybersecurity governance programs in highly regulated federal environments, including implementation and oversight of NIST-based security controls
- Strong understanding of Federal requirements to include but not limited to applicable Executive Orders, FISMA, FIPS, CMMC, NIST 800-171, NIST 800-53, NIST 800-60, and NIST 800-65.
- Experience with Federal and DoD GRC tools. (CFACTS, CSAM, eMASS, etc.)
- Experience mapping and cross walking policies, standards, and procedures to multiple security frameworks.
- Exercise judgement in selecting methods, techniques, and evaluation criteria for obtaining results.
- Network with key contacts outside own area of expertise.
- Develop solutions to a variety of complex problems.
- Work requires considerable judgment and initiative.
- Ability to communicate Federal language (NIST verbiage) in understandable business terms.
- Excellent interpersonal skills, presentation skills, and oral / written communication skills.
- Strong customer service abilities required.
- Ability to work collaboratively with a broad range of staff.
- Skilled in Microsoft Office software including Word, Excel, and PowerPoint; Smartsheet; and Lucid.
- Ability to perform comfortably in a fast-paced, deadline-oriented work environment.
- Ability to execute many complex tasks simultaneously and work as a team member as well as independently.
Preferred Qualifications:
- Bachelor’s degree in cybersecurity, computer science, information assurance, or related field
- Certifications like CISSP, CISM, CISA, or GRC / audit or risk certifications desired.
#HotJobs0519LI #HotJobs0519FB #HotJobs0519X #HotJobs0519TH #TrendingJobs
EEO Statement
Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics.
Pay Transparency
Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.
Accommodations
Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process—including accessing job postings, completing assessments, or participating in interviews,—please contact People Operations at applicantaccom@maximus.com.
