SeniorRiskManagementFramework(A&A)Consultant

**_Job Family_ :** Cyber Consulting ** _Travel Required_ :** Up to 10% **_Clearance Required_ :** Ability to Obtain Public Trust _**What You Will Do:**_ The Senior RMF / A&A Consultant is a subject matter practitioner responsible for executing cybersecurity authorization and compliance activities across cloud and enterprise systems. This role leads development of RMF artifacts, coordinates authorization activities, supports audits, and provides risk and compliance advisory services to government stakeholders. Senior Consultants operate independently on complex assignments while contributing to overall program execution and mentoring junior team members. **Key Responsibilities** * Lead development of RMF and A&A documentation including SSPs, control implementation matrices, SARs, POA&Ms, and risk acceptance materials. * Support authorization of cloud services leveraging FedRAMP packages and agency specific control requirements. * Coordinate A&A activities with System Owners, ISSOs, IAMs, and third party assessors. * Support 3PAO readiness assessments and SAR development for cloud platforms. * Prepare audit documentation, respond to PBC requests, and support FISMA and financial system audits. * Track audit findings, develop POA&Ms, and support remediation efforts through closure. * Develop recurring A&A and audit progress reports for government leadership. * Maintain compliance repositories and ensure documentation remains current and audit ready. **_What You Will Need:_** * Must be able to OBTAIN and MAINTAIN a Federal or DoD "PUBLIC TRUST"; candidates must obtain approved adjudication of their PUBLIC TRUST prior to onboarding with Guidehouse. Candidates with an ACTIVE PUBLIC TRUST or SUITABILITY and maintain an active HHS/NIH clearance are preferred. * Demonstrated experience supporting federal RMF and A&A activities. * Minimum of THREE (3) years of hands on experience with NIST RMF and federal A&A processes * Strong working knowledge of NIST SP 800 37, 800 53, FISM