ZipRecruiter

Log In

1

Rmf Jobs (NOW HIRING)

Integral

The Senior RMF Specialist/ISSO is responsible for guiding IT systems through the entire Risk Management Framework (RMF) lifecycle to achieve and maintain the Authority to Operate (ATO) for US Army G2 ...

FGS LLC

Cybersecurity /RMF Lead - Cloud

Suitland, MD ยท On-site

$150K - $165K/yr

The Cybersecurity / RMF Lead will work closely with system engineers, cloud architects, software developers, ISSMs, ISSOs, Security Control Assessors (SCAs), Authorizing Officials (AOs), and ...

Red Cell Partners

Platform Security & RMF Lead

As the Platform Security & RMF Lead, you will own the authorization posture and platform-level security discipline for DEFCON AI's government-facing systems and integration platform. You are ...

Leidos

Sr. RMF Security Engineer

San Diego, CA ยท On-site

$131K - $237K/yr

Leidos has a new and exciting opportunity for a Sr. RMF Security Engineer in our National Security Sector's (NSS) Cyber & Analytics Business Area (CABA) . Our talented team is at the forefront in ...

Leidos

Sr. RMF Security Engineer

San Diego, CA ยท On-site

$131K - $237K/yr

Leidos has a new and exciting opportunity for a Sr. RMF Security Engineer in our National Security Sector's (NSS) Cyber & Analytics Business Area (CABA) . Our talented team is at the forefront in ...

Technology, Automation, and Management, Inc.

The ISSO/RMF Lead is responsible for RMF compliance across two ATO systems ANG-DSS and AROWS supporting a shared user base of approximately 120,000 ANG service members (200,000+ total user accounts ...

E Logic

Security / RMF Lead

Atlanta, GA ยท Remote

$85K/yr

E-logic is seeking a Security / RMF Lead to support the National Center for Health Statistics (NCHS) Office of Informatics, Governance, and Assurance (OIGA) under the VISION task order. Serving as a ...

DEFCON AI

Platform Security & RMF Lead

As the Platform Security & RMF Lead, you will own the authorization posture and platform-level security discipline for DEFCON AI's government-facing systems and integration platform. You are ...

next page

Showing results 1-20

All JobsRmf Jobs

Rmf information

See salary details

$39K

$97.1K

$168K

How much do rmf jobs pay per year?

As of Jun 26, 2026, the average yearly pay for rmf in the United States is $97,123.00, according to ZipRecruiter salary data. Most workers in this role earn between $69,500.00 and $118,000.00 per year, depending on experience, location, and employer.

What are the primary responsibilities of an RMF specialist on a daily basis?

An RMF specialist typically oversees the implementation and documentation of security controls for information systems, ensuring continuous compliance with government and organizational regulations. Daily tasks may include conducting risk assessments, preparing security authorization documentation, communicating with stakeholders about security requirements, and staying updated on regulatory changes. They also collaborate closely with IT, cybersecurity, and compliance teams to address vulnerabilities and support audits. This role requires regular monitoring and reporting to maintain a secure and compliant operational environment.

What job makes $10,000 a month without a degree?

High-paying jobs that can reach $10,000 a month without a degree include roles such as real estate brokers, sales managers, or skilled trades like electricians and plumbers, especially with experience and certifications. Success in these fields often depends on skills, reputation, and performance rather than formal education, and they may require licensing or specialized training.

What is an RMF job?

An RMF (Risk Management Framework) job involves implementing security measures and compliance processes to protect an organization's information systems. Professionals in this role assess risks, develop mitigation strategies, and ensure adherence to federal cybersecurity regulations, such as those outlined by NIST. They often work with government agencies, contractors, and businesses handling sensitive data. RMF specialists conduct security assessments, document controls, and support continuous monitoring efforts to maintain system integrity and compliance.

Can you make $500,000 a year in cyber security?

In cybersecurity, reaching a $500,000 annual salary is possible for senior roles such as Chief Information Security Officer (CISO) or highly experienced specialists with advanced certifications and extensive experience. These positions often involve leadership, strategic planning, and managing large security teams or budgets. Most cybersecurity professionals earn lower salaries, but top executives and specialists in high-demand areas can achieve this level of compensation.

What are the key skills and qualifications needed to thrive in the Rmf position, and why are they important?

To excel as a Risk Management Framework (RMF) specialist, a solid background in cybersecurity principles, risk assessment, and knowledge of federal compliance standards is essential, often supported by a degree in information security or a related field. Familiarity with tools like eMASS, NIST guidelines, and certifications such as CISSP or CAP is highly advantageous. Strong analytical thinking, attention to detail, and effective communication skills set outstanding RMF professionals apart in this role. These skills are vital to ensure secure system operations and maintain regulatory compliance in sensitive environments.

What does an RMF analyst do?

An RMF analyst is responsible for managing and implementing the Risk Management Framework to ensure the security of information systems. They assess vulnerabilities, develop security plans, and ensure compliance with cybersecurity standards, often using tools like NIST SP 800-37. The role requires knowledge of cybersecurity principles, risk assessment, and often involves working with security controls and documentation.

What jobs pay 2000 a day?

High-paying jobs that can pay around $2,000 a day typically include roles such as specialized surgeons, anesthesiologists, corporate lawyers, and certain executive positions. These jobs often require advanced degrees, extensive experience, and certifications, and may involve high-stakes environments or specialized skills. Freelance consulting, investment banking, and certain tech project management roles can also reach this level with the right expertise and client base.
More about Rmf jobs
What cities are hiring for Rmf jobs? Cities with the most Rmf job openings:
What are the most commonly searched types of Rmf jobs? The most popular types of Rmf jobs are:
What states have the most Rmf jobs? States with the most job openings for Rmf jobs include:
What job categories do people searching Rmf jobs look for? The top searched job categories for Rmf jobs are:
Rmf jobs near you
Infographic showing various Rmf job openings in the United States as of June 2026, with employment types broken down into 94% Full Time, 2% Part Time, and 4% Contract. Highlights an 89% Physical, 4% Hybrid, and 7% Remote job distribution, with an average salary of $97,123 per year, or $46.7 per hour.

GRC / NIST RMF Specialist

Apogee Global RMS

Beltsville, MD โ€ข On-site

Full-time

Posted 15 days ago

Job description

Apogee Global RMS is seeking a GRC / NIST RMF Specialist to support federal programs requiring disciplined governance, risk, and compliance execution. This role is built for practitioners who understand the full lifecycle of NIST RMF, can translate controls into actionable engineering guidance, and can partner with federal stakeholders to drive accreditation success.

You will serve as a trusted advisor across security, engineering, and mission teams โ€” ensuring that compliance is not a paperwork exercise but a strategic enabler of secure operations.

What You Will Lead:

  • Full lifecycle NIST RMF execution (Categorization โ†’ Continuous Monitoring)
  • Development and refinement of SSPs, POA&Ms, SARs, and control evidence packages
  • Security control assessments, gap analyses, and remediation planning
  • Advisory support for ATO readiness, audit preparation, and stakeholder coordination
  • Risk analysis and prioritization aligned to mission, system, and organizational impact
  • Collaboration with engineering teams to ensure controls are implemented effectively
  • Continuous monitoring strategy, reporting, and compliance sustainment

Requirements

Certifications:

  • CISA
  • CRISC
  • CISM
  • NIST RMF training (FedVTE or equivalent)
  • ISO 27001 Lead Auditor is a meaningful differentiator, especially for commercialโ€‘adjacent bids

Technical & Functional Expertise:

  • Deep understanding of NIST 800โ€‘53, NIST RMF, and federal security baselines
  • Experience preparing ATO packages and supporting federal accreditation processes
  • Ability to translate compliance requirements into clear, actionable engineering tasks
  • Strong writing and documentation skills for federal audiences
  • Experience working with ISSOs, ISSEs, SCA teams, and federal program leadership

Location & Clearance:

  • Must reside in the NCR (DC/MD/VA)
  • Secret clearance minimum; clearable candidates considered

Expected Skills:

  • Operates with precision, structure, and clarity
  • Understands both the technical and policy sides of federal cybersecurity
  • Can guide teams through complex accreditation processes without friction
  • Communicates confidently with auditors, assessors, and mission stakeholders
  • Thrives in highโ€‘trust, highโ€‘impact advisory environments

Benefits

Why Apogee:

Apogee supports federal programs in this prime engagement where governance and risk decisions directly influence mission readiness. Youโ€™ll work with senior stakeholders, shape compliance strategy, and operate in an environment that values expertise, discipline, and operational excellence.

How to Apply

For any questions (OR) to apply, please contact us at careers@apogeeglobalrms.com.