Expression is seeking a highly experienced Risk Management Support Lead to run authority for operational risk management, IT governance, and Risk Management Framework (RMF) coordination supporting DCSA enterprise IT operations. This position is responsible for establishing and maintaining an integrated risk management program that proactively identifies, assesses, mitigates, and communicates operational, cybersecurity, and program risks affecting mission execution.
You will own the enterprise Risk Register and provide executive-level visibility into the organization's operational risk posture to support informed decision-making and mission resilience.
Clearance Required: Active Secret clearance with eligibility for TS/SCI.
Key Responsibilities
- Lead enterprise IT operational risk management activities.
- Develop and maintain the enterprise Risk Register.
- Coordinate risk identification, assessment, mitigation, and reporting across all task areas.
- Support RMF activities and security governance processes.
- Provide executive-level risk reporting and recommendations to Government leadership.
- Ensure projects and operational services comply with cybersecurity and risk management requirements.
- Facilitate risk reviews and governance meetings.
- Analyze operational trends to identify emerging risks.
- Coordinate with task leads to ensure effective mitigation strategies are implemented.
- Escalate significant operational and cybersecurity risks as appropriate.
- Promote continual improvement of organizational risk management processes.
Minimum Qualifications
- Bachelor's degree in Information Technology, Engineering, Computer Science, or a closely related technical discipline.
- Minimum of 10 years of project management experience.
- Minimum of 7 years managing the full Risk Management Framework (RMF) life cycle, cybersecurity governance, enterprise risk management and successfully achieving Authorization to Operate (ATO).
- Experience with enterprise Mission Assurance Support Service (eMASS)
- Experience managing enterprise IT risk programs supporting DoW or Federal agencies.
- Experience developing executive risk dashboards, governance reporting, and related required documentation (SSP, SAR, POA&M).
- Experience preparing and leading enterprise compliance and audit readiness initiatives including implementing STIGs, SCAP, understanding vulnerability management lifecycle using ACAS/Nessus, interpreting scan results and managing remediation.
- Experience with enterprise technologies used in DCSA to effectively manage risk, including: Virtualization (VMware), Linux (RHEL), Windows Server, Active Directory, and enterprise storage.
- Experience implementing ITIL/ITSM and utilizing ITIL 4 frameworks to create, maintain, and enforce staff compliance with documented practices, ensuring alignment with the ISO 20000-1:2018
- Experience preparing systems for security control assessments, acting as the primary liaison with security assessors, and compiling the final authorization package for submission to the Authorizing Official (AO).
- Required Certifications:
- PMP certification
- DoD 8570/8140 IAM Level III certification.
- CISSP or Certified Authorization Professional (CAP) certification.
Preferred Qualifications
- Experience supporting DCSA or Intelligence Community environments.
- Experience with NIST RMF, NIST SP 800-53, and DoD cybersecurity policies.
Benefits:
Expression offers competitive salaries and benefits, such as:
- 401k matching
- PPO and HDHP medical/dental/vision insurance
- Education reimbursement
- Complimentary life insurance
- Generous PTO and holiday leave
- Onsite office gym access
- Commuter Benefits Plan
About Expression:
Founded in 1997 and headquartered in Washington DC, Expression provides data fusion, data analytics, software engineering, information technology, and electromagnetic spectrum management solutions to the U.S. Department of Defense, Department of State, and national security community. Expression’s “Perpetual Innovation” culture focuses on creating immediate and sustainable value for our clients via agile delivery of tailored solutions built through constant engagement with our clients. Expression was ranked #1 on the Washington Technology 2018's Fast 50 list of fastest growing small business Government contractors and a Top 20 Big Data Solutions Provider by CIO Review.
Equal Employment Opportunity Statement
Expression is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
Skills Required
- Bachelor's degree from an accredited college or university
- Degree in Information Technology, Telecommunications, Engineering, Computer Science, or closely related technical discipline
- Minimum of 10 years of project management experience
- Minimum of 7 years supporting Risk Management Framework (RMF), cybersecurity governance, or enterprise risk management
- PMP certification
- DoD 8570/8140 IAM Level III certification
- CISSP or Certified Authorization Professional (CAP) certification
- Demonstrated experience managing enterprise IT risk programs supporting DoD or Federal agencies
- Experience developing executive risk dashboards and governance reporting
- Experience leading enterprise compliance and audit readiness initiatives
- Active Secret clearance with eligibility for TS/SCI
What We Do
Expression Networks is a software company providing AI-enhanced data fusion, analytics, engineering, and information technology solutions to support national security and defense missions.







