Want to get hired at Jobs via Dice?
Mid GRC Compliance Officer
Jobs via Dice
HybridHybrid
Original Job Summary
Overview
Jobs via Dice presents an opportunity for a Mid GRC Compliance Officer. This role supports compliance with NIST 800-53 Risk Management Framework (RMF) requirements and ensures continuous security control compliance.
Scope & Responsibilities
- Manage communication with stakeholders including IT managers and auditors
- Track and report on security KPIs and IT metrics
- Establish, gather, analyze, and report security metrics
- Maintain active system Authority To Operate (ATO) and system security documentation
Required Skills
- 5+ years with NIST Information Assurance Control Assessment
- 5+ years with NIST RMF and vulnerability compliance reporting
- 5+ years maintaining System Plan of Action and Milestones (POA&M)
- 3+ years with GRC Applications (e.g. Xacta, Archer, CSAM or eMASS)
- Certification such as CISSP, CISM, or CAP
Preferred Skills
- 3+ years with Tenable, TrendMicro, or QRadar tools
- Exposure to System Development Lifecycle, Azure, or AWS
- Experience in project planning
- Public Trust Clearance (sponsorship available)
Tasks
- Expertly manage NIST RMF process and security controls
- Develop and publish system security artifacts
- Monitor daily scrum meetings and provide updates to leadership
- Translate security needs into technical solutions
Key skills/competency
NIST, RMF, Compliance, GRC, Security, KPIs, POA&M, ATO, Certification, Auditing
How to Get Hired at Jobs via Dice
🎯 Tips for Getting Hired
- Research Creative Global Consulting's culture: Explore mission and recent projects.
- Customize your resume: Highlight NIST and RMF experience.
- Emphasize compliance skills: Focus on security control success stories.
- Prepare for technical discussions: Review NIST standards and audit processes.
📝 Interview Preparation Advice
Technical Preparation
circle
Review NIST 800-53 standards.
circle
Study RMF process details.
circle
Practice security metrics reporting.
circle
Familiarize with GRC tool usage.
Behavioral Questions
circle
Describe conflict resolution with IT teams.
circle
Explain managing stakeholder expectations.
circle
Detail handling tight deadlines.
circle
Discuss communication in audits.