Senior Risk Management Framework (A&A) Consultant
Guidehouse•Tysons Corner, VA
•Remote
About The Position
The Senior RMF / A&A Consultant is a subject matter practitioner responsible for executing cybersecurity authorization and compliance activities across cloud and enterprise systems. This role leads development of RMF artifacts, coordinates authorization activities, supports audits, and provides risk and compliance advisory services to government stakeholders. Senior Consultants operate independently on complex assignments while contributing to overall program execution and mentoring junior team members.
Requirements
- Must be able to OBTAIN and MAINTAIN a Federal or DoD "PUBLIC TRUST"; candidates must obtain approved adjudication of their PUBLIC TRUST prior to onboarding with Guidehouse.
- Demonstrated experience supporting federal RMF and A&A activities.
- Minimum of THREE (3) years of hands on experience with NIST RMF and federal A&A processes
- Strong working knowledge of NIST SP 800 37, 800 53, FISMA, and FedRAMP.
- Experience supporting audits, evidence collection, and POA&M management.
- Ability to translate technical security requirements into clear, compliant documentation.
- Strong organizational, communication, and stakeholder coordination skills.
Nice To Haves
- Security+, CAP, or equivalent certification.
- Experience supporting third party assessments or SAR development.
- Familiarity with ServiceNow, GRC platforms, or audit tracking tools.
- Experience supporting cloud or financial system authorizations.
Responsibilities
- Lead development of RMF and A&A documentation including SSPs, control implementation matrices, SARs, POA&Ms, and risk acceptance materials.
- Support authorization of cloud services leveraging FedRAMP packages and agency specific control requirements.
- Coordinate A&A activities with System Owners, ISSOs, IAMs, and third party assessors.
- Support 3PAO readiness assessments and SAR development for cloud platforms.
- Prepare audit documentation, respond to PBC requests, and support FISMA and financial system audits.
- Track audit findings, develop POA&Ms, and support remediation efforts through closure.
- Develop recurring A&A and audit progress reports for government leadership.
- Maintain compliance repositories and ensure documentation remains current and audit ready.
Benefits
- Medical, Rx, Dental & Vision Insurance
- Personal and Family Sick Time & Company Paid Holidays
- Parental Leave and Adoption Assistance
- 401(k) Retirement Plan
- Basic Life & Supplemental Life
- Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
- Short-Term & Long-Term Disability
- Student Loan PayDown
- Tuition Reimbursement, Personal Development & Learning Opportunities
- Skills Development & Certifications
- Employee Referral Program
- Corporate Sponsored Events & Community Outreach
- Emergency Back-Up Childcare Program
- Mobility Stipend
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
