Subject Matter Expert III – Governance, Risk, & Compliance (2 Openings):


General Info:


Citizenship Required: US Citizenship


Clearance: Secret


Job Duration: Full Time


Site: Washington D.C. Metro Area (Crystal City, VA)


Travel: 10% or Less






The GRC Subject Matter Expert III is an experienced Manager level professional with comprehensive, in-depth experience in risk advisory   aaaaservices with a focus in information security, cybersecurity and information technology risk management and compliance including:


·       Vulnerability Assessment and Management


·       Security Strategy Assessment and Management


·       Infrastructure & Operations Security and Risk Management


·       Privacy & Data Protection


·       Use and compliance with frameworks and regulations such as FISMA, NIST (800-53, cybersecurity), ISO, ITIL, OWASP, PCI, GLBA, HIPAA, aaaaCobIT, and other data privacy and security standards and regulations


·       Penetration Testing


·       Identify and mitigate risks throughout the schedule


·       Coordinate the day-to-day activities required to deliver all projects on time


·       Host regular project meetings and deliver crisp status updates to all stakeholders


·       Manage external dependencies and logistics


·       Work with senior technical leads, and client counterparts to develop technical innovation strategy for the program


·       Assist the Program Manger with preparation of status reports and briefings


·       Actively participate in client discussions, meetings, and business development opportunities




Education and Experience Required:


 ·       Knowledge and experience with NIST Risk Management Framework required


·       10+ years of working experience in security related field


·       PMP, CISSP, CISA, SANS, or other relevant certification


·       Experience and Competency with:


o   CSAM (or similar tool i.e. TAF, Archer, Xacta, etc.)


o   Security Authorization and Assessment (SA&A)


o   Privacy Risk Assessment (PRA) Agency’s processes


o   Firewalls


o   Enterprise anti-virus management


o   Strong understanding and demonstrated experience applying a risk-based approach to information security and IT assessments


o   DBProtect


o   WebInspect


o   Tenable Security Center


·       Participation in the CCB, TRB, and SAR Board, review change requests, and support engineering activities for projects


·       Ability to work in a fast-paced, demanding environment


·       Excellent organizational skills and strong attention to detail


·       Ability to prioritize duties based on shifting demands


·       Strong analytical and problem-solving skills


·       Excellent verbal and written communication skills






 ·       College degree in Information Security or relevant field


If interested, please send resume to careers@digitalglobalconnectors.com




Copyright 2012 DGC. All rights reserved

2015 | DESIGN BY  JMAR VISION (John Martin)