2

Remote Rmf Jobs in Reston, VA (NOW HIRING)

This position is fully remote. This position requires a Public Trust or the ability to obtain a ... Experience implementing NIST Risk Management Framework (RMF) controls. * Active CISSP, CAP ...

NIH - ISSO

Bethesda, MD ยท On-site +1

This position is fully remote. This position requires a Public Trust or the ability to obtain a ... Experience implementing NIST Risk Management Framework (RMF) controls. * Active CISSP, CAP ...

Remote Clearance Required: Active Secret Clearance Education: Associate's Degree (AA/AS) in English ... RMF processes * Systems architecture * Test and evaluation activities * Fleet modernization

IoT / Edge Software Engineer

Bethesda, MD ยท Remote

$68K - $141K/yr

We are currently seeking a IoT / Edge Software Engineer to join our team in Bethesda (REMOTE ... Knowledge of DoD cybersecurity, privacy, and RMF requirements for IL4/IL5 systems * Experience with ...

Security Compliance Architect

VA ยท On-site +1

$65.25 - $84.25/hr

... 15, 2026 City Remote Country United States Working time Full-time Description & Requirements ... This role leads to RMF activities, develops authorization artifacts, and ensures adherence to ...

next page

Showing results 1-20

Remote Rmf information

See Reston, VA salary details

$30.7K

$98.8K

$177.4K

How much do remote rmf jobs pay per year?

As of Jul 11, 2026, the average yearly pay for remote rmf in Reston, VA is $98,756.00, according to ZipRecruiter salary data. Most workers in this role earn between $51,500.00 and $132,600.00 per year, depending on experience, location, and employer.

What is a Remote RMF job?

A Remote RMF (Risk Management Framework) job involves managing cybersecurity risk and compliance for an organization while working remotely. Professionals in this role ensure that IT systems align with federal security standards, such as those outlined by NIST. Responsibilities may include conducting risk assessments, implementing security controls, and maintaining compliance documentation. Remote RMF specialists often work with government agencies, contractors, or private companies handling sensitive data. This position requires expertise in cybersecurity policies, risk management, and regulatory compliance.

What are the typical daily responsibilities of a Remote RMF Specialist?

As a Remote RMF Specialist, your daily responsibilities often include conducting security assessments, preparing and reviewing authorization packages, and ensuring ongoing compliance with federal information security standards. You'll collaborate with cross-functional teams to identify risks, develop mitigation strategies, and document security control implementations. Regular communication with stakeholders, participation in virtual meetings, and continual monitoring of systems and processes to ensure compliance are also core aspects of the job. This role leverages remote work tools to collaborate effectively with cybersecurity, IT, and compliance professionals across multiple locations.

What are the key skills and qualifications needed to thrive in the Remote Rmf position, and why are they important?

To thrive as a Remote RMF (Risk Management Framework) Specialist, you need a strong understanding of information security principles, federal risk management frameworks (such as NIST SP 800-37), and relevant cybersecurity policies, typically backed by a degree in information security or related field. Familiarity with security assessment tools, governance, risk, and compliance (GRC) software, as well as certifications like CISSP, CAP, or CISM, is highly valued. Excellent organizational skills, attention to detail, and the ability to communicate complex security concepts clearly are important soft skills. These capabilities are critical to ensure regulatory compliance and robust information system security in a remote work context.

What are popular job titles related to Remote Rmf jobs in Reston, VA? For Remote Rmf jobs in Reston, VA, the most frequently searched job titles are:
What cities near Reston, VA are hiring for Remote Rmf jobs? Cities near Reston, VA with the most Remote Rmf job openings:
Infographic showing various Remote Rmf job openings in Reston, VA as of July 2026, with employment types broken down into 89% Full Time, 8% Part Time, and 3% Contract. Highlights an 40% Physical, 3% Hybrid, and 57% Remote job distribution, with an average salary of $98,756 per year, or $47.5 per hour.
NIH - ISSO

NIH - ISSO

cFocus Software Incorporated

Bethesda, MD โ€ข Remote

Full-time

Posted 11 days ago


Job description

cFocus Software seeks a Information Systems Security Officer (ISSO) to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
  • Public Trust Clearance
  • B.S. Computer Science, Information Technology, or a related field
  • 5+ years of experience supporting Federal information security programs.
  • Experience supporting Federal Assessment and Authorization (A&A) efforts.
  • Experience implementing NIST Risk Management Framework (RMF) controls.
  • Active CISSP, CAP, Security+, CISM, GSLC, or GSEC

Duties:
  • Serve as the primary Information System Security Officer (ISSO) for assigned NIH information systems.
  • Implement and maintain the NIST Risk Management Framework (RMF) throughout the system development lifecycle.
  • Support Assessment and Authorization (A&A) activities for Low and Moderate FISMA systems.
  • Develop, maintain, and update System Security Plans (SSPs), Security Assessment Plans (SAPs), Security Assessment Reports (SARs), Plans of Action and Milestones (POA&Ms), security categorization documentation, and supporting authorization artifacts.
  • Coordinate with System Owners to implement and maintain NIST SP 800-53 Rev. 5 security controls.
  • Perform continuous monitoring activities to verify ongoing compliance with Federal cybersecurity requirements.
  • Monitor security vulnerabilities and coordinate remediation efforts with system administrators and technical teams.
  • Track, update, and report POA&M items through successful remediation and closure.
  • Review vulnerability scan results and ensure corrective actions are completed within required timelines.
  • Support annual FISMA assessments and internal/external cybersecurity audits.
  • Assist in developing security risk assessments and documenting residual risk.
  • Coordinate security control assessments with Security Control Assessors (SCAs).
  • Support the preparation of authorization packages for Authorizing Officials (AOs).
  • Review proposed system changes for cybersecurity impacts and ensure appropriate security documentation is updated.
  • Maintain accurate cybersecurity documentation throughout the authorization lifecycle.
  • Assist with Risk Mitigation Waiver documentation and implementation of compensating security controls.
  • Provide cybersecurity guidance to System Owners regarding Federal information security requirements.
  • Participate in security architecture reviews and system design discussions.
  • Develop cybersecurity status reports, metrics, and compliance documentation for management.
  • Ensure compliance with FISMA, OMB guidance, HHS cybersecurity policy, NIH security requirements, and NIST standards.
  • Participate in cybersecurity incident response activities and coordinate with enterprise cybersecurity teams when required.

Powered by JazzHR

Ei6ZMOtz6Z