ShorePoint Inc

Compensation

Full Description

Job Description: • Lead the design, implementation and automation of end-to-end RMF workflows that will integrate into operational activities • Develop workflow orchestration, templates and dashboards to automate control evidence, status tracking and authorization activities • Collaborate with system owners, ISSOs and engineers to assist with embedding compliance-by-design principles into their operations • Engineer and document automated processes for control selection, assessment and continuous monitoring • Analyze existing manual processes to identify automation opportunities using tools such as ServiceNow, Archer, Jira or custom Python/Bash scripts • Create and maintain visual process maps, lifecycle diagrams and executive dashboards to communicate process performance and maturity • Develop and document standard operating procedures (SOPs) and configuration baselines supporting automated authorization to operate (ATO) processes • Facilitate stakeholder workshops to gather requirements, define process KPIs and validate automation effectiveness • Serve as a key contributor to the organization’s Continuous ATO (cATO) and governance modernization initiatives • Ensure all process automation adheres to NIST, FedRAMP and agency security policies while improving efficiency and consistency. Requirements: • 10+ years of relevant work experience • Associate’s degree substitutes for 2 years of experience; a bachelor's degree substitutes for 3 years of experience; A postgraduate degree from an accredited university may substitute for 6 years of experience • Expert understanding of the NIST Risk Management Framework (SP 800-37, 800-53, 800-137) and federal security compliance practices • Proficiency with process automation and visualization tools (e.g., Power Automate, ServiceNow Flow Designer, Lucidchart, Visio or Miro) • Familiarity with GRC platforms such as Archer, eMASS or ServiceNow for workflow integration and control tracking • Demonstrated ability to build and communicate process documentation, metrics and visuals for technical and executive audiences • Excellent facilitation, stakeholder engagement and technical writing skills • Working knowledge of AWS, Azure or GCP security services and cloud compliance automation • Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking • Proven experience implementing or optimizing security or compliance workflows • Experience developing automated scripts or integrations for process efficiency (e.g., Python, PowerShell or REST APIs) • Demonstrated success leading cross-functional collaboration between engineers, ISSOs and governance teams • Strong analytical mindset and ability to translate policy into actionable, automated processes • Applicants must hold and maintain an active DOE Q or equivalent DoD Top Secret clearance. Benefits: • 18 days of PTO • 11 holidays • 85% of insurance premium covered • 401k • continued education • certifications maintenance and reimbursement • comprehensive benefits package