A&A Risk Manager

Public Trust: MBI (T2)

Requisition Type: Pipeline

Your Impact

Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the well being of U.S. citizens.

Job Description

Seize your opportunity to make a personal impact as an Assessment & Authorization ( A&A) Risk Manager supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.

At GDIT, people are our differentiators. As an A&A Risk Manager , you will help ensure today is safe and tomorrow is smarter. Our work depends on an A&A Risk Manager joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service.

HOW A A&A RISK MANAGER WILL MAKE AN IMPACT

In this role, a typical day will include:

• Being responsible for overseeing the process of evaluating and authorizing information systems to operate, ensuring they meet established security requirements and manage potential risks. This involves conducting security assessments, identifying vulnerabilities, developing risk mitigation strategies, and ensuring compliance with relevant regulations and policies.
• Developing Risk Mitigation Strategies: with stakeholders to develop and implement strategies to mitigate identified risks.
• Maintaining Risk Registers of security risks, monitoring their status and ensuring appropriate actions are taken.
• Developing and Maintaining Security Policies

WHAT YOU’LL NEED TO SUCCEED:

Education :

• Bachelor's Degree in Computer Science or related technical discipline, preferred but not required.
• NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required.

Required Experience :

• 3+ years' experience as a A&A Risk Manager
• Extensive experience conducting risk analysis of applications to assess potential impact of disruptions on critical business functions, including financial, operational, and reputational consequences.
• Experience with and understanding of process to retire applications/systems across large organizations, including verification of remnant removal, to minimize security risks to the organization, and ability to advise application stakeholders through the process.
• Knowledge of and demonstrated experience leading site security reviews at various types of facilities to assess risk, and documenting findings, observations, and recommendations.
• In-depth understanding of Authorization & Assessment (A&A) requirements, standards, and best practices (e.g., NIST, FISMA) to advise security and IT professionals, application stakeholders, managers, and executives.
• Demonstrated ability to develop, track, analyze and regularly report status of goals, milestones, and metrics using complex and large data sets to measure the effectiveness of A&A processes.
• Knowledge and understanding of cybersecurity policies and processes sufficient to review, understand and provide inputs to internal security policies, SOPs and training documents.
• Demonstrated proficiency in using Governance, Risk, and Compliance (GRC) tools.
• Ability to serve as subject matter expert (SME) for the USPS A&A process.
• Knowledge of or experience with the SDLC Retirement/Decommission process.
• Ability to effectively manage compliance documentation, security plans, risk assessments, and other related documents within the GRC tool, ServiceNow, and SharePoint environments.
• Effective communication and collaboration skills to work with cross-functional teams, stakeholders, and IT professionals.

Security Clearance Level :

• Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
• This position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years.

Location :

• Morrisville, NC
• Falls Church, VA
• Eagan, MN
• Remote considered

GDIT IS YOUR PLACE:

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career.
• Professional growth opportunities including paid education and certifications.
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays

#GDITCareers #RiskManager #zxc726

Work Requirements

Years of Experience

3 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Travel Required

Less than 10%