Job Description
Responsibilities for this Position
Location: USA VA Falls Church
Full Part/Time: Full time
Job Req: RQ205429
Type of Requisition: Pipeline
Clearance Level Must Currently Possess: None
Clearance Level Must Be Able to Obtain: None
Public Trust/Other Required: MBI (T2)
Job Family: Cyber Security
Job Qualifications: Skills: Cybersecurity, Risk Mitigation Strategies, Security Evaluations
Certifications: None
Experience: 3 + years of related experience
US Citizenship Required: No
Job Description: Seize your opportunity to make a personal impact as an
Assessment & Authorization ( A&A) Risk Manager supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.
At GDIT, people are our differentiators. As an
A&A Risk Manager , you will help ensure today is safe and tomorrow is smarter. Our work depends on an
A&A Risk Manager joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service.
HOW A A&A RISK MANAGER WILL MAKE AN IMPACT In this role, a typical day will include:
- Being responsible for overseeing the process of evaluating and authorizing information systems to operate, ensuring they meet established security requirements and manage potential risks. This involves conducting security assessments, identifying vulnerabilities, developing risk mitigation strategies, and ensuring compliance with relevant regulations and policies.
- Developing Risk Mitigation Strategies: with stakeholders to develop and implement strategies to mitigate identified risks.
- Maintaining Risk Registers of security risks, monitoring their status and ensuring appropriate actions are taken.
- Developing and Maintaining Security Policies
WHAT YOU'LL NEED TO SUCCEED: Education :
- Bachelor's Degree in Computer Science or related technical discipline, preferred but not required.
- NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required.
Required Experience :
- 3+ years' experience as a A&A Risk Manager
- Extensive experience conducting risk analysis of applications to assess potential impact of disruptions on critical business functions, including financial, operational, and reputational consequences.
- Experience with and understanding of process to retire applications/systems across large organizations, including verification of remnant removal, to minimize security risks to the organization, and ability to advise application stakeholders through the process.
- Knowledge of and demonstrated experience leading site security reviews at various types of facilities to assess risk, and documenting findings, observations, and recommendations.
- In-depth understanding of Authorization & Assessment (A&A) requirements, standards, and best practices (e.g., NIST, FISMA) to advise security and IT professionals, application stakeholders, managers, and executives.
- Demonstrated ability to develop, track, analyze and regularly report status of goals, milestones, and metrics using complex and large data sets to measure the effectiveness of A&A processes.
- Knowledge and understanding of cybersecurity policies and processes sufficient to review, understand and provide inputs to internal security policies, SOPs and training documents.
- Demonstrated proficiency in using Governance, Risk, and Compliance (GRC) tools.
- Ability to serve as subject matter expert (SME) for the USPS A&A process.
- Knowledge of or experience with the SDLC Retirement/Decommission process.
- Ability to effectively manage compliance documentation, security plans, risk assessments, and other related documents within the GRC tool, ServiceNow, and SharePoint environments.
- Effective communication and collaboration skills to work with cross-functional teams, stakeholders, and IT professionals.
Security Clearance Level :
- Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
- This position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years.
Location :
- Morrisville, NC
- Falls Church, VA
- Eagan, MN
- Remote considered
GDIT IS YOUR PLACE: - 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career.
- Professional growth opportunities including paid education and certifications.
- Cutting-edge technology you can learn from
- Rest and recharge with paid vacation and holidays
#GDITCareers #RiskManager #zxc726
The likely salary range for this position is $94,676 - $128,092. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Scheduled Weekly Hours: 40
Travel Required: Less than 10%
Telecommuting Options: Onsite
Work Location: USA VA Falls Church
Additional Work Locations: USA NC Morrisville
Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc .
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
PI277276972
Seize your opportunity to make a personal impact as an
Assessment & Authorization ( A&A) Risk Manager supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.
At GDIT, people are our differentiators. As an
A&A Risk Manager , you will help ensure today is safe and tomorrow is smarter. Our work depends on an
A&A Risk Manager joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service.
HOW A A&A RISK MANAGER WILL MAKE AN IMPACT In this role, a typical day will include:
- Being responsible for overseeing the process of evaluating and authorizing information systems to operate, ensuring they meet established security requirements and manage potential risks. This involves conducting security assessments, identifying vulnerabilities, developing risk mitigation strategies, and ensuring compliance with relevant regulations and policies.
- Developing Risk Mitigation Strategies: with stakeholders to develop and implement strategies to mitigate identified risks.
- Maintaining Risk Registers of security risks, monitoring their status and ensuring appropriate actions are taken.
- Developing and Maintaining Security Policies
WHAT YOU'LL NEED TO SUCCEED: Education :
- Bachelor's Degree in Computer Science or related technical discipline, preferred but not required.
- NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required.
Required Experience :
- 3+ years' experience as a A&A Risk Manager
- Extensive experience conducting risk analysis of applications to assess potential impact of disruptions on critical business functions, including financial, operational, and reputational consequences.
- Experience with and understanding of process to retire applications/systems across large organizations, including verification of remnant removal, to minimize security risks to the organization, and ability to advise application stakeholders through the process.
- Knowledge of and demonstrated experience leading site security reviews at various types of facilities to assess risk, and documenting findings, observations, and recommendations.
- In-depth understanding of Authorization & Assessment (A&A) requirements, standards, and best practices (e.g., NIST, FISMA) to advise security and IT professionals, application stakeholders, managers, and executives.
- Demonstrated ability to develop, track, analyze and regularly report status of goals, milestones, and metrics using complex and large data sets to measure the effectiveness of A&A processes.
- Knowledge and understanding of cybersecurity policies and processes sufficient to review, understand and provide inputs to internal security policies, SOPs and training documents.
- Demonstrated proficiency in using Governance, Risk, and Compliance (GRC) tools.
- Ability to serve as subject matter expert (SME) for the USPS A&A process.
- Knowledge of or experience with the SDLC Retirement/Decommission process.
- Ability to effectively manage compliance documentation, security plans, risk assessments, and other related documents within the GRC tool, ServiceNow, and SharePoint environments.
- Effective communication and collaboration skills to work with cross-functional teams, stakeholders, and IT professionals.
Security Clearance Level :
- Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
- This position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years.
Location :
- Morrisville, NC
- Falls Church, VA
- Eagan, MN
- Remote considered
GDIT IS YOUR PLACE: - 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career.
- Professional growth opportunities including paid education and certifications.
- Cutting-edge technology you can learn from
- Rest and recharge with paid vacation and holidays
Job Tags
Full time, Temporary work, Part time, Work experience placement, Immediate start, Remote work, Worldwide, Flexible hours,