IT and Cyber Risk Auditor

Posted 4 Days Ago
Be an Early Applicant
Falls Church, VA, USA
In-Office
81K-110K Annually
Junior
Aerospace • Information Technology • Professional Services • Security • Software
The Role
Perform RMF-based security audits and control assessments (DCSA/JSIG/SAP), review SSPs/POA&Ms and continuous monitoring evidence, evaluate NIST SP 800-53 controls, brief stakeholders, and support ATO/SAP authorization maintenance and remediation tracking.
Summary Generated by Built In

Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Top Secret

Clearance Level Must Be Able to Obtain:

Top Secret/SCI

Public Trust/Other Required:

None

Job Family:

Cyber and IT Risk Management

Job Qualifications:

Skills:

DISA STIG, NIST Risk Management Framework, Operations Security

Certifications:

None

Experience:

2 + years of related experience

US Citizenship Required:

Yes

Job Description:

Help safeguard critical government systems by applying your hands-on ISSM/ISSO experience to security governance, risk evaluation, and compliance oversight. As an IT and Cyber Risk Auditor at GDIT, you will leverage your background managing RMF controls, system documentation, and continuous monitoring activities to deliver thorough, accurate, and mission‑focused security assessments.

This role is ideal for cybersecurity professionals who have previously served as an ISSM or ISSO and are seeking to transition into a dedicated risk, audit, and compliance position where they can influence security posture across multiple systems and programs.

MEANINGFUL WORK AND PERSONAL IMPACT

As an IT and Cyber Risk Auditor, the work you do at GDIT will have a direct and measurable impact on our customer’s mission. You’ll help ensure the integrity, security, and compliance of their IT systems by identifying potential risks, validating critical controls, and supporting continuous improvement efforts. Your work will enhance operational resilience and enable the customer to execute their mission with confidence.

● Conduct comprehensive security audits and RMF control assessments in accordance with DCSA, JSIG, and SAP security requirements, leveraging prior ISSO/ISSM experience.

Review, validate, and improve security documentation and artifacts such as SSPs, POA&Ms, Continuous Monitoring outputs, and other evidence required by RMF and DCSA assessment standards.

Develop, implement, and oversee operational information system security policies and guidelines aligned with the Risk Management Framework (RMF), JSIG, and applicable DCSA directives.

Evaluate system security controls for effectiveness, completeness, and compliance with NIST SP 800‑53, DCSA/DoW requirements, JSIG standards, and internal organizational policies.

● Collaborate with ISSOs, ISSMs, SAP security personnel, and technical teams to analyze findings, recommend remediation actions, and ensure timely correction of identified vulnerabilities.

● Analyze system changes, configuration updates, and vulnerability data to determine authorization impacts, risk‑level changes, and required updates under RMF and JSIG/SAP processes.

● Support ongoing ATO and SAP authorization maintenance by tracking assessments, evidence submissions, and documentation required throughout the RMF and JSIG lifecycles.

● Prepare and deliver clear, risk‑focused briefings to system owners, DCSA assessors, SAP authorities, and other stakeholders regarding compliance status, audit results, and security‑related decisions.

WHAT YOU’LL NEED TO SUCCEED
Bring your cyber expertise and drive for innovation to GDIT. The IT and Cyber Risk Auditor must have:
● Education: Bachelors degree
● Experience: 2+ years of related experience as a prior ISSO/ISSM. In lieu of degree, additional 4+ years of work experience/training/education will be required

● Certifications: IAT II (Security +, SSCP, CCNA Security)

● Technical skills: Strong understanding of NIST SP 800-53, DoW cybersecurity requirements, and control implementation/assessment practices. Familiarity with Windows/Linux environments, vulnerability tools, and security baselines.

● Prior SAP experience desired
● Security clearance: Must have an active Top Secret clearance in order to be considered, and the ability to obtain and maintain TS/SCI clearance.

● US citizenship required
● Role requirements: Onsite, 5 days/week in Falls Church, VA office location

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
● Growth: AI-powered career tool that identifies career steps and learning opportunities.
● Support: An internal mobility team focused on helping you achieve your career goals.
● Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off.
● Community: Award-winning culture of innovation and a military-friendly workplace.
OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

The likely salary range for this position is $81,349 - $110,055. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

Less than 10%

Telecommuting Options:

Onsite

Work Location:

USA VA Falls Church

Additional Work Locations:

Total Rewards at GDIT:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

 



Our Identity Verification Process:

As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during virtual interviews. We reserve the right to take your picture to verify your identity and prevent fraud. By proceeding, you authorize the collection, processing, and use of your biometric data for identity verification and security purposes.

About Our Work:

We are GDIT. A global technology and professional services company that delivers technology solutions and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50+ countries worldwide, offering leading mission-ready capabilities in AI, cloud, cyber and software development.

Join our Talent Community to stay up to date on our career opportunities and events at

gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Skills Required

  • Bachelor's degree (or additional 4+ years of work experience/training/education in lieu of degree)
  • 2+ years related experience as a prior ISSO or ISSM
  • IAT II certification baseline (examples: Security+, SSCP, CCNA Security)
  • Active Top Secret security clearance
  • Ability to obtain and maintain Top Secret/SCI
  • US citizenship required
  • Onsite attendance 5 days/week in Falls Church, VA
  • Hands-on knowledge of RMF, DISA STIG, JSIG, DCSA/DoW requirements, NIST SP 800-53, security baselines, vulnerability scanning tools, Windows/Linux environments, SSPs/POA&Ms and continuous monitoring
  • Prior SAP security/SAP environment experience

General Dynamics Information Technology Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about General Dynamics Information Technology and has not been reviewed or approved by General Dynamics Information Technology.

  • Affordable Benefits Pay and benefits are described as good or okay in multiple places, and the overall package is often portrayed as acceptable even when base pay is not viewed as top-tier.
  • Healthcare Strength Medical, dental, and vision plan options are presented as comprehensive, with additional protections like disability and life insurance contributing to a well-rounded health and protection offering.
  • Retirement Support A 401(k) plan with company match is consistently highlighted as part of the total rewards package, supporting longer-term financial planning.

General Dynamics Information Technology Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Falls Church, VA
21,625 Employees

What We Do

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

Similar Jobs

BAE Systems, Inc. Logo BAE Systems, Inc.

Senior Principal Design Safety Engineer

Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
Hybrid
Radford, VA, USA
40000 Employees
121K-205K Annually

BAE Systems, Inc. Logo BAE Systems, Inc.

Systems Engineer

Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
Hybrid
Radford, VA, USA
40000 Employees
88K-150K Annually

BAE Systems, Inc. Logo BAE Systems, Inc.

Information Technology Project Manager

Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
Hybrid
Herndon, VA, USA
40000 Employees
141K-239K Annually

SailPoint Logo SailPoint

Sales Representative

Artificial Intelligence • Cloud • Sales • Security • Software • Cybersecurity • Data Privacy
Remote or Hybrid
2 Locations
2461 Employees
58K-120K Annually

Similar Companies Hiring

Outpost Space Thumbnail
Aerospace • Defense
US
24 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account