Aquia is seeking a Senior GRC Specialist to own governance, risk, and compliance activities across federal IT and cybersecurity programs. This role requires managing FISMA compliance and RMF-driven authorization programs, with a focus on service delivery metrics, SLA performance, and audit readiness. The position is for a senior individual contributor comfortable with drafting POA&M responses, engaging with auditors, and producing operational reporting for leadership. Key responsibilities include managing the POA&M lifecycle, supporting FISMA compliance, applying NIST SP 800-53 and NIST SP 800-37 (RMF), managing and reporting on SLAs and availability metrics, developing operational reporting for stakeholders, leading audit readiness activities, identifying control gaps and recommending mitigations, and supporting continuous monitoring programs for ongoing ATO/cATO sustainment.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Senior