AGE Solutions is seeking a
Senior RMF Process Engineer to support our DoD customer's cybersecurity modernization initiatives. The successful candidate will analyze, document, and improve RMF-related business processes while helping drive efficiency, automation, and continuous improvement across enterprise risk management operations.
Responsibilities Include: - Conduct process analysis and lead assessment processes, activities, and workflow assessments.
- Document current-state and future-state business processes.
- Develop and implement execution plans to achieve end state objectives.
- Develop swim-lane diagrams, process flows, and value-stream maps.
- Identify bottlenecks process and recommend improvements utilizing qualitative and quantitative measures.
- Support RMF modernization and cybersecurity process optimization efforts.
- Assist in developing executive briefings, recommendations, and implementation plans.
- Support automation and workflow improvement initiatives.
- Collaborate with government stakeholders and cross-functional teams.
Required Skills, Qualifications and Experience:- Education:
- Bachelor's degree in engineering, Computer Science, Information Systems, Business, or related discipline.
- Experience:
- 15 years of experience with a minimum of (5) years of experience performing business process analysis and process improvement.
- Security Clearance:
- Must have a current DoD Secret Clearance.
- Certifications:
- Must have a Current DoD 8570/8140 compliant certification (Security+, CAP, CISSP, CISM, or equivalent).
- Additional role-specific certifications in process improvement, automation, AI/ML, or cybersecurity are highly desired.
- Skills and Knowledge:
- Demonstrated proficiency in Microsoft Visio (process modeling, swim-lane diagrams, BPMN) and Microsoft PowerPoint (executive-quality briefings).
- Demonstrated working knowledge of the DoD Risk Management Framework (RMF) as defined in NIST SP 800-37, NIST SP 800-53, CNSSI-1253, and applicable DoD Instructions (e.g., DoDI 8500.01, DoDI 8510.01).
- Familiarity with one or more of the mission areas under support: STIG/SRG/CCI development, A&A processes, Cloud A&A processes, or Cloud cybersecurity architecture.
- Working knowledge of automation technologies (e.g., Robotic Process Automation, workflow tools such as ServiceNow or Jira) and current AI/ML and Generative AI capabilities relevant to enterprise process automation.
- Location:
- This is a hybrid position. Must be able to travel periodically to Fort Meade, MD and Chambersburg, PA to support customer meetings, workshops, and program activities.
Preferred Qualifications:- Experience supporting DISA, DoD, or Federal cybersecurity programs, with direct involvement in Risk Management Framework (RMF) implementation and authorization activities.
- Expert knowledge of DoD RMF, NIST SP 800-37, NIST SP 800-53, CNSSI 1253, DoDI 8500.01, and DoDI 8510.01.
- Certified Authorization Professional (CAP), CISSP, CISM, CASP+, or equivalent DoD 8570/8140-compliant cybersecurity certification.
- RPA Certifications e.g. UiPath or Blue Prism highly preferred.
- Experience serving as an Information System Security Manager (ISSM), Information System Security Officer (ISSO), Security Control Assessor (SCA), or Authorizing Official (AO) support representative.
- Experience with STIG, SRG, and CCI development, implementation, validation, and compliance assessment activities.
- Experience supporting Cloud Authorization and Assessment (A&A), FedRAMP, DoD Cloud Computing Security Requirements Guide (CC SRG), or Zero Trust initiatives.
- Experience briefing cybersecurity risks, authorization recommendations, and compliance findings to senior government leadership and decision maker.
The projected salary range for this position is $175,000+ annually. Final compensation will be determined based on factors including years of relevant experience, active security clearance level, certifications, technical skillset, contract requirements, and overall qualifications.
