DC OIG Governance, Risk, and Compliance (GRC) Specialist
Share
Job Location:
Washington, AR - USA
Monthly Salary:
Not Disclosed
Posted on:
8 hours ago
Vacancies:
1 Vacancy
Job Summary
Job Summary:
The Governance Risk and Compliance (GRC) Specialist plays a crucial role in maintaining and improving the organizations cybersecurity posture. This position involves supporting control testing maintaining documentation developing cybersecurity metrics and contributing to reporting and quality assurance activities. The ideal candidate will have a strong understanding of cybersecurity governance risk and compliance principles.
The Governance Risk and Compliance (GRC) Specialist plays a crucial role in maintaining and improving the organizations cybersecurity posture. This position involves supporting control testing maintaining documentation developing cybersecurity metrics and contributing to reporting and quality assurance activities. The ideal candidate will have a strong understanding of cybersecurity governance risk and compliance principles.
Location:Washington District of Columbia United States
Responsibilities:
- Support NIST 800-53 control testing and evidence collection.
- Maintain findings repository and traceability matrix.
- Support Plan of Action & Milestones (POA&M) risk register and remediation documentation.
- Develop cybersecurity metrics aligned with CISA CPGs and NIST CSF.
- Support reporting and quality assurance activities.
- Support NIST 800-53 control testing and evidence collection.
- Maintain findings repository and traceability matrix.
- Support Plan of Action & Milestones (POA&M) risk register and remediation documentation.
- Develop cybersecurity metrics aligned with CISA CPGs and NIST CSF.
- Support reporting and quality assurance activities.
Required Skills & Certifications:
- Cybersecurity GRC analysis
- Control testing methodologies
- Technical writing and documentation
- Risk scoring and prioritization
- Security Certification
- Cybersecurity GRC analysis
- Control testing methodologies
- Technical writing and documentation
- Risk scoring and prioritization
- Security Certification
Preferred Skills & Certifications:
- CISSP Associate Certification
- CRISC Certification
- CISM Certification
- CISSP Associate Certification
- CRISC Certification
- CISM Certification
Special Considerations:
- None specified.
- None specified.
Scheduling:
- Not specified.
- Not specified.
Key Skills
- Interventional Radiology
- Information Technology Sales
- Jdbc
- Glass
- Architecture
