Risk Management Framework (RMF) Technical Engineer, Q Clearance
ShorePoint Inc
full-time
Posted on:
Location Type: Remote
Location: Remote • Virginia • 🇺🇸 United States
Visit company websiteJob Level
SeniorLead
Tech Stack
AWSAzureCloudGoogle Cloud PlatformPythonServiceNow
About the role
- Lead the design, implementation and automation of end-to-end RMF workflows that will integrate into operational activities
- Develop workflow orchestration, templates and dashboards to automate control evidence, status tracking and authorization activities
- Collaborate with system owners, ISSOs and engineers to assist with embedding compliance-by-design principles into their operations
- Engineer and document automated processes for control selection, assessment and continuous monitoring
- Analyze existing manual processes to identify automation opportunities using tools such as ServiceNow, Archer, Jira or custom Python/Bash scripts
- Create and maintain visual process maps, lifecycle diagrams and executive dashboards to communicate process performance and maturity
- Develop and document standard operating procedures (SOPs) and configuration baselines supporting automated authorization to operate (ATO) processes
- Facilitate stakeholder workshops to gather requirements, define process KPIs and validate automation effectiveness
- Serve as a key contributor to the organization’s Continuous ATO (cATO) and governance modernization initiatives
- Ensure all process automation adheres to NIST, FedRAMP and agency security policies while improving efficiency and consistency.
Requirements
- 10+ years of relevant work experience
- Associate’s degree substitutes for 2 years of experience; a bachelor's degree substitutes for 3 years of experience; A postgraduate degree from an accredited university may substitute for 6 years of experience
- Expert understanding of the NIST Risk Management Framework (SP 800-37, 800-53, 800-137) and federal security compliance practices
- Proficiency with process automation and visualization tools (e.g., Power Automate, ServiceNow Flow Designer, Lucidchart, Visio or Miro)
- Familiarity with GRC platforms such as Archer, eMASS or ServiceNow for workflow integration and control tracking
- Demonstrated ability to build and communicate process documentation, metrics and visuals for technical and executive audiences
- Excellent facilitation, stakeholder engagement and technical writing skills
- Working knowledge of AWS, Azure or GCP security services and cloud compliance automation
- Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking
- Proven experience implementing or optimizing security or compliance workflows
- Experience developing automated scripts or integrations for process efficiency (e.g., Python, PowerShell or REST APIs)
- Demonstrated success leading cross-functional collaboration between engineers, ISSOs and governance teams
- Strong analytical mindset and ability to translate policy into actionable, automated processes
- Applicants must hold and maintain an active DOE Q or equivalent DoD Top Secret clearance.
Benefits
- 18 days of PTO
- 11 holidays
- 85% of insurance premium covered
- 401k
- continued education
- certifications maintenance and reimbursement
- comprehensive benefits package
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
process automationworkflow orchestrationcontrol selectioncontinuous monitoringautomated scriptsPythonBashPowerShellREST APIssecurity compliance workflows
Soft skills
facilitationstakeholder engagementtechnical writingcritical thinkinganalytical mindsetcollaborationcommunicationrequirements gatheringprocess documentationmetrics visualization
Certifications
DOE Q clearanceDoD Top Secret clearance