Creative Global Consulting

Compensation

Full Description

Mid GRC Compliance Officer Client: Veterans Affairs (VA) POP: 12+ months Location: Remote US Citizen SCOPE The Mid GRC Compliance Officer (GCO) role supports compliance with NIST 800-53 Risk Management Framework (RMF) compliance requirements. The GCO must effectively communicate with stakeholders, including IT managers, and auditors. The GCO manages, tracks, and reports to customer contractually required security Key Performance Indicators (KPIs) and reports IT metrics. The GCO will establish and gather, analyze, report security metrics, ensure continued security control compliance, and maintain active system Authority To Operate (ATO). REQUIRED SKILLS • 5+ years of experience conducting NIST Information Assurance Control Assessment • 5+ years of experience with NIST Risk Management Framework (RMF) • 5+ years of experience with vulnerability compliance and remediation reporting • 5+ years of experience maintaining System Plan of Action and Milestones (POA&M) • 3+ years of experience with Governance, Risk, & Compliance (GRC) Applications (e.g. Xacta, Archer, CSAM or eMASS) • Certified in industry recognized areas such as CISSP or CISM or CAP PREFERRED SKILLS • 3+ years of experience with Tenable or TrendMicro or QRadar tools and reports • System Development Lifecycle (exposure) • Azure or AWS (exposure) • Project Planning (exposure) TASKS • Be an expert in the NIST RMF process, security controls, system security plan (SSP) development and publishing of system security artifacts. • Monitor daily squad scrums, daily scrum of scrums and semi-weekly updates to leadership for actions required. • Provide Information Assurance subject matter expertise and translate security needs into technical solutions. Job Type: Full-time Pay: $50.00 - $60.00 per hour Work Location: Remote