2

Remote Technology Risk Management Jobs in Virginia

Tier One Technologies is seeking a Policy Specialist for our US Government client. * This remote ... Familiarity with security governance, risk management, and compliance (GRC) processes. * Must be ...

Tier One Technologies is seeking a Policy Specialist for our US Government client. * This remote ... Familiarity with security governance, risk management, and compliance (GRC) processes. * Must be ...

Program Manager

Herndon, VA ยท On-site +1

Drive performance through clear communication, disciplined execution, and proactive risk management ... Remote candidates will not be considered due to clearance and customer interaction requirements.

Program Manager

Reston, VA ยท On-site +1

Hybrid or Remote Terms: Full Time Clearance: U.S. Citizenship Preferred; Ability to Obtain Public ... risk management, quality assurance, and strategic modernization initiatives. This role is ...

Program Manager

Reston, VA ยท On-site +1

Hybrid or Remote Terms:Full Time Clearance:U.S. Citizenship Preferred; Ability to Obtain Public ... risk management, quality assurance, and strategic modernization initiatives. This roleis ...

Program Manager

Reston, VA ยท On-site +1

Hybrid or Remote Terms: Full Time Clearance: U.S. Citizenship Preferred; Ability to Obtain Public ... risk management, quality assurance, and strategic modernization initiatives. This role is ...

next page

Showing results 1-20

Remote Technology Risk Management information

What is Remote Technology Risk Management?

Remote Technology Risk Management refers to the process of identifying, assessing, and mitigating risks associated with the use of technology in remote work environments. This includes ensuring data security, managing access controls, and developing incident response plans for employees who work outside traditional office settings. Professionals in this field help organizations prevent data breaches, comply with regulations, and maintain business continuity as more employees work remotely. Effective risk management is crucial for protecting sensitive information and maintaining the integrity of IT systems in a distributed workforce.

What are some common challenges faced in a remote technology risk management role, and how can they be effectively addressed?

In a remote technology risk management role, one common challenge is maintaining effective communication and collaboration with cross-functional teams, especially when assessing and mitigating risks across different time zones. To address this, professionals often rely on clear documentation, regular virtual meetings, and collaborative risk management tools. Additionally, staying updated on emerging threats and ensuring consistent security practices across remote environments can be demanding, but leveraging centralized frameworks and continuous training helps maintain a strong risk posture. Building strong relationships with IT, compliance, and business stakeholders also supports more proactive and coordinated risk management.

What is the difference between Remote Technology Risk Management vs Remote Cybersecurity Analyst?

AspectRemote Technology Risk ManagementRemote Cybersecurity Analyst
CertificationsCRISC, CISSP, CISACISSP, CompTIA Security+
Work EnvironmentRisk assessment, policy development, complianceThreat detection, incident response, vulnerability analysis
Industry UsageFinance, healthcare, tech companiesFinancial institutions, government agencies, tech firms

Remote Technology Risk Management focuses on identifying and mitigating technology risks across an organization, ensuring compliance and strategic risk reduction. In contrast, Remote Cybersecurity Analysts primarily detect and respond to security threats and vulnerabilities. While both roles require cybersecurity certifications and work in similar environments, their core responsibilities differ: risk management emphasizes proactive policies, whereas cybersecurity analysts handle active threat response.

What are the key skills and qualifications needed to thrive as a Remote Technology Risk Management professional, and why are they important?

To thrive in Remote Technology Risk Management, you need a solid understanding of IT risk assessment, cybersecurity principles, and regulatory compliance, often supported by a degree in information systems or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC (governance, risk, and compliance) tools, and relevant certifications like CRISC or CISSP is typically expected. Strong analytical skills, attention to detail, and effective written communication are essential soft skills for evaluating risks and reporting findings remotely. These competencies are crucial for identifying vulnerabilities, ensuring regulatory compliance, and protecting organizational assets in a distributed work environment.
What are the most commonly searched types of Technology Risk Management jobs in Virginia? The most popular types of Technology Risk Management jobs in Virginia are:
What job categories do people searching Remote Technology Risk Management jobs in Virginia look for? The top searched job categories for Remote Technology Risk Management jobs in Virginia are:
What cities in Virginia are hiring for Remote Technology Risk Management jobs? Cities in Virginia with the most Remote Technology Risk Management job openings:
Cybersecurity Specialist - Mid/Senior - SBG REMOTE

Cybersecurity Specialist - Mid/Senior - SBG REMOTE

SBG TECHNOLOGY SOLUTIONS INC

Alexandria, VA โ€ข Remote

Full-time

Posted 13 days ago


Job description

SBG Technology Solutions, Inc. (SBG), a DSS, Inc. company, offers IT Governance, Systems Engineering, Enterprise Modernization, Artificial Intelligence, and Cyber Security innovation to federal and commercial clients nationwide.ย 

Overview

The Cybersecurity Specialist ensures all applications meet FedRAMP High security and compliance requirements throughout the assessment and onboarding process for DSS Health Cloud, a FedRAMP High authorized healthcare-focused platform hosted in an AWS Government enclave environment. This role supports Independent Software Vendors (ISVs) and government applications by identifying security gaps, supporting authorization documentation, and validating alignment with applicable federal cybersecurity frameworks.

The Cybersecurity Specialist will:

  • Assesses application security posture, including logging, auditing, and control implementation, against FedRAMP High baseline requirements

  • Supports Authority to Operate (ATO) documentation efforts and compliance readiness activities for applications undergoing onboarding assessment

  • Identifies cybersecurity gaps across assessed applications and recommends prioritized remediation actions with supporting rationale

  • Evaluates application and environment alignment with Zero Trust architecture principles and continuous monitoring requirements

  • Supports development of System Security Plans (SSPs), Plan of Action and Milestones (POA&M) inputs, and related security authorization artifacts

  • Applies Risk Management Framework (RMF) processes to security assessment activities and documents findings in accordance with NIST guidelines

  • Reviews identity, access control, and encryption implementations to verify compliance with applicable standards and FedRAMP controls

  • Conducts vulnerability management reviews and evaluates continuous monitoring capabilities for onboarding candidates

  • Collaborates with cloud architects, program managers, and ISV technical teams to communicate security findings and guide remediation planning

Other Duties:

  • Performs other duties as assigned by management in support of SBG Technology Solutions contract objectives

  • Travel requirements: occasional travel as required by project needs (estimated up to 10% per year)

Conditions of Employment:

  • Must be a US Citizenย 

  • Must be able to pass a Federal background check

  • Must be determined suitable for federal employment

Security and Privacy Duties and Responsibilities

Individuals working for SBG Technology Solutions, Inc, a DSS, Inc. will be subject to security and privacy requirements as explained in HIPAA, FedRAMP, and NIST 800-53. Additionally, they are required to undergo specific FedRAMP training to ensure compliance with all associated controls and responsibilities in the day-to-day performance of their duties. Individuals working in departments that are considered to be in the high-risk category will be required to undergo advanced training based on their role and level of access. Individuals with access to modify data and the configuration baseline will require further training.

The preceding functions are examples of the work performed by employees assigned to this job classification.ย  Management reserves the right to add, modify, change or rescind work assignments and make a reasonable accommodation as needed.

Required Skills:

  • In-depth knowledge of FedRAMP High security controls and the NIST Risk Management Framework (RMF) process

  • Proficiency in security architecture review and cloud security engineering within AWS or comparable government cloud environments

  • Experience conducting vulnerability management assessments and evaluating continuous monitoring programs

  • Working knowledge of identity and access management (IAM), encryption standards, and access control frameworks

  • Ability to develop and review authorization documentation including SSPs, POA&Ms, and security assessment reports

  • Strong analytical and written communication skills; able to document and present security findings clearly to both technical and non-technical audiences

  • Capable of managing concurrent assessment workstreams and delivering findings within defined project timelines

Preferred Skills:

  • Familiarity with HIPAA Security Rule requirements and healthcare application security considerations

  • Experience with AWS security tooling (e.g., AWS Security Hub, GuardDuty, CloudTrail, Config)

  • Knowledge of DevSecOps practices and secure software development lifecycle (SSDLC) methodologies

Education:

Required:

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related technical discipline

  • A combination of education and experience will be considered (2 years of relevant experience equivalent to 1 year in a degree program)

Desired:ย Master's degree in Cybersecurity, Information Assurance, or a related field

Certification(s), Licenses:

Desired:

    • Certified Information Systems Security Professional (CISSP)

    • Certified Information Security Manager (CISM)

    • CompTIA Security+ or equivalent federal baseline certification

    • AWS Certified Security โ€“ Specialty

Years of experience in a similar role:

Required:ย 8+ years of cybersecurity experience in federal or regulated environments, with demonstrated engagement in FedRAMP or RMF processes

Desired:ย 10+ years of cybersecurity experience including direct responsibility for ATO support or FedRAMP authorization activities

Physical Demands:

Standing

5% per day

Sitting

90% per day

Walking

5% per day

Stooping

Minimal

Lifting

Up to 10 lbs. unassisted, several times a day (laptop, office equipment, office supplies, etc.)

Computer Work

85% per day

Telephone Work

15% per day

Reading

20% per day

Other, please specify

Travel unassisted up to ___% per year, via common carrier and/or personal automobile.

SBGTS, Inc. is an Equal Opportunity Employer

If you need an accommodation seeking employment with SBGTS, Inc., please e-mail jobs@dssinc.com or call (561) 284-7333. Accommodations are made on a case-by-case basis.