2

Remote Rmf Jobs in Stafford, VA (NOW HIRING)

This position is remote and requires a Secret security clearance. Maximus TCS (Technology and ... Ensures solutions comply with DoD cybersecurity, RMF, data protection, and Responsible AI policies

Cybersecurity Analyst, Mid

Stafford, VA · On-site +1

$105K - $115K/yr

We have an opening for a Cyber Security Analyst, Mid to provide cyber security support and develop and maintain DoDI 8510.01-compliant Risk Management Framework (RMF) authorization packages for all ...

next page

Showing results 1-20

Remote Rmf information

See Stafford, VA salary details

$29.4K

$94.7K

$170.1K

How much do remote rmf jobs pay per year?

As of Jul 6, 2026, the average yearly pay for remote rmf in Stafford, VA is $94,688.00, according to ZipRecruiter salary data. Most workers in this role earn between $49,400.00 and $127,200.00 per year, depending on experience, location, and employer.

What is a Remote RMF job?

A Remote RMF (Risk Management Framework) job involves managing cybersecurity risk and compliance for an organization while working remotely. Professionals in this role ensure that IT systems align with federal security standards, such as those outlined by NIST. Responsibilities may include conducting risk assessments, implementing security controls, and maintaining compliance documentation. Remote RMF specialists often work with government agencies, contractors, or private companies handling sensitive data. This position requires expertise in cybersecurity policies, risk management, and regulatory compliance.

What are the typical daily responsibilities of a Remote RMF Specialist?

As a Remote RMF Specialist, your daily responsibilities often include conducting security assessments, preparing and reviewing authorization packages, and ensuring ongoing compliance with federal information security standards. You'll collaborate with cross-functional teams to identify risks, develop mitigation strategies, and document security control implementations. Regular communication with stakeholders, participation in virtual meetings, and continual monitoring of systems and processes to ensure compliance are also core aspects of the job. This role leverages remote work tools to collaborate effectively with cybersecurity, IT, and compliance professionals across multiple locations.

What are the key skills and qualifications needed to thrive in the Remote Rmf position, and why are they important?

To thrive as a Remote RMF (Risk Management Framework) Specialist, you need a strong understanding of information security principles, federal risk management frameworks (such as NIST SP 800-37), and relevant cybersecurity policies, typically backed by a degree in information security or related field. Familiarity with security assessment tools, governance, risk, and compliance (GRC) software, as well as certifications like CISSP, CAP, or CISM, is highly valued. Excellent organizational skills, attention to detail, and the ability to communicate complex security concepts clearly are important soft skills. These capabilities are critical to ensure regulatory compliance and robust information system security in a remote work context.

What are popular job titles related to Remote Rmf jobs in Stafford, VA? For Remote Rmf jobs in Stafford, VA, the most frequently searched job titles are:
What cities near Stafford, VA are hiring for Remote Rmf jobs? Cities near Stafford, VA with the most Remote Rmf job openings:
DevSecOps & Site Reliability Engineering (SRE) Technical Director (Remote)

DevSecOps & Site Reliability Engineering (SRE) Technical Director (Remote)

Oxley Enterprises®, Inc.

Stafford, VA • Remote

$58.25 - $77.50/hr

Full-time

Medical, Dental, Vision, Life, Retirement

Posted 13 days ago


Job description

The following states/districts are excluded from this job ad: AK, CA, CO, CT, DC, HI, LA, MA, MN, MO, NE, NV, NH, NJ, NM, NY, ND, OR, PR, RI, VT, WA, WY

Future Need - Actively Interviewing

Location: Remote in any United States jurisdiction not excluded from this job advertisement.

Lead the secure delivery and reliability engineering of a mission-critical VA cloud platform! As the DevSecOps & SRE Technical Director, you will support CI/CD pipeline architecture, platform reliability engineering, and automated delivery practices supporting the Department of Veterans Affairs (VA).

Position Description: The DevSecOps and Site Reliability Engineering (SRE) Technical Director provides senior technical leadership for all DevSecOps practices, SRE services, and automated delivery pipelines across the VA healthcare environment while ensuring CI/CD pipelines are secure, automated, and compliant.

Minimum/General Experience: 8 years of experience in DevSecOps, platform engineering, site reliability engineering, and technical leadership

Minimum Education: Bachelor's Degree in computer science, software engineering, information technology or related field

Essential Skills/Qualifications:

  • Expert experience providing technical leadership for DevSecOps and platform engineering activities supporting complex enterprise systems in a SAFe environment
  • Expert experience in cloud-native architectures, containerized environments, CI/CD pipelines, monitoring, and automated infrastructure management
  • Expert experience designing, implementing, and governing enterprise CI/CD pipeline architectures (e.g., Jenkins, GitLab CI, Tekton) in a Kubernetes/Elastic Kubernetes Service (EKS) environment
  • Expert knowledge of Infrastructure as Code (IaC) using Terraform
  • Expert ability to integrate Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), container scanning, and IaC scanning into delivery pipelines
  • Excellent experience enforcing secure software supply chain practices and zero-trust principles
  • Excellent experience enforcing IaC governance, automated testing, and policy-as-code across all environment types
  • Excellent experience with SRE practices (e.g., Service Level Indicators, objectives, agreements, error budget management, capacity planning, toil reduction via automation)
  • Excellent knowledge of advanced deployment strategies (e.g., blue/green, canary, rolling deployments) with automated rollback in Kubernetes environments
  • Excellent understanding of observability practices (e.g., logging, metrics, distributed tracing and integration with enterprise monitoring platforms (e.g., Dynatrace, Splunk))
  • Above average experience supporting Authority to Operate (ATO) processes, continuous authorization, and audit activities in a Federal Risk management Framework (RMF) environment
  • Above average knowledge of PI Planning, DevSecOps maturity models, and DevOps metrics (e.g., deployment frequency, change failure rate, MTTR)
  • Working knowledge of VA OI&T security policies, FISMA compliance requirements, and NIST 800-53 control implementation in DevSecOps contexts
  • Experience supporting Federal Government programs and large-scale mission-critical applications operating in cloud or hybrid environments
  • Excellent written and verbal communication skills

General Physical Requirements needed to perform the essential functions of this job may vary based on the location of the assignment.

  • Assignment Location - Remote
  • Sedentary Work - Exerting up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects.
  • Typing, communicating, repetitive motions.
  • Close visual acuity to prepare and analyze data, view computer monitors and read. May need to view presentation screens and other visual aids in a virtual setting.
  • Inside environmental conditions with protection from outside elements.

Security: Active Federal Civilian Public Trust clearance

  • U.S. Citizenship or Permanent Resident that has lived in the United States for at least 3 years

Federal Civilian Public Trust Consists of a review of up to but not limited to:

  • Covers 10 year period and in some instances lifetime events
  • OPM Security Investigations Index (SII)
  • DOD Defense Central Investigations Index (DCII)
  • National Agency Check (NAC) records
  • FBI name check
  • FBI fingerprint check
  • Credit report check
  • Written inquiries to previous employers and references listed on the application for employment
  • Potential interviews with the subject, spouse, neighbors, supervisor, coworkers
  • Law enforcement check
  • Court records check
  • Education check - Attendance and Degrees

Acceptable Credentials

Tasks/Activities include, but are not limited to:

  • Maintains regular communication with the Contracting Officer's Representative (COR) and Government technical leadership regarding platform reliability, deployment activities, and operational improvements
  • Provides senior technical oversight for all DevSecOps and SRE activities ensuring platform delivery velocity, security posture, and operational resilience meet or exceed contractual performance objectives
  • Governs CI/CD pipeline architecture across all supported applications
  • Ensures 100% of pipelines integrate automated security testing (SAST/DAST/SCA/container scanning) and enforce environment segregation
  • Leads SRE practices including 24/7 on-call coverage governance, Golden Signal monitoring, Service Level Indicators/Objectives (SLI/SLO) definition, and incident response for all assigned applications
  • Ensures 100% of infrastructure components are provisioned and managed through approved IaC tooling
  • Enforces code reviews and approval cycle time of no more than 3 business days
  • Oversees implementation of advanced deployment strategies (e.g., blue/green, canary, rolling) with automated rollback mechanisms to minimize deployment risk to production services
  • Ensures all DevSecOps and SRE practices comply with VA security, privacy, and RMF requirements
  • Supports ATO and continuous authorization activities
  • Collaborates with leadership to align platform delivery, reliability, and observability strategies
  • Continuously evaluates and implements improvements to automation, security integration, and deployment efficiency
  • Improves DevSecOps metrics across the program

Compensation & Benefits: The annual projected pay range for this position is $104,528 - $135,714 with consideration being given to various factors including but not limited to qualifications, experience, job responsibilities, and geographic location.

Oxley Enterprises, Inc. offers a full array of benefits including:

  • Medical, dental, vision and prescription drug coverage for you and your family.
  • Life Insurance, short-term disability and long-term disability paid for by the Company.
  • Supplemental coverages including Accident, Critical Illness, and Hospital.
  • Additional Life insurance coverage for you and your dependents.
  • 401k plan with various options to select based on your retirement goals.

Oxley Enterprises®, Inc. is a certified service-disabled veteran-owned (SDVOSB), veteran-owned (VOSB), and woman-owned small business (WOSB) that has 26 years of experience building and delivering quality IT systems and programs. Oxley is ranked in the INC 5000 7 times (2016, 2017, 2018, 2021, 2023, 2024, 2025). Oxley is a 2019 - 2025 Department of Labor HIRE Vets Medallion Award Winner. Oxley is Virginia Values Veterans certified.

All qualified applicants will receive consideration for employment without regard to any status protected by applicable federal, state, or local law.

If you require a reasonable accommodation to apply for a position at Oxley Enterprises, Inc., please send an email to our Human Resources Department at: careers@oxleyenterprises.com with the following information:

Subject Line: Accommodation Request

Provide a description of your accommodation request

Include your contact information: Full name, Email address, Best number to reach you (optional)

We participate in the E-Verify program. http://www.dhs.gov/E-Verify