Cybersecurity Governance, Risk, and Compliance (GRC) Support – ServiceNow Platform Experience Required

Do you have a passion for cybersecurity policy and metrics? Do you have experience using the ServiceNow platform – especially the GRC module – to streamline and automate risk and compliance processes? Do you have experience supporting the U.S. Federal Government (USG)? If you are you are looking to take that next step up in your career and become a key member of a team supporting a large Federal Government agency, then we want to hear from you!

Hill Associates is searching for an energetic, talented professional with a cybersecurity, IT, or GRC background and demonstrable skills using the ServiceNow platform. The ideal candidate will have prior experience developing IT or cybersecurity-focused GRC processes and/or technical documentation, including compliance tracking methods in the Federal Government environment.

Mandatory requirement – The position requires U.S. Citizenship. The candidate must have the ability to obtain and maintain a public trust suitability clearance. We are not able to sponsor work visas for this position.

Remote-based work is currently supported.

What You Will Get to Do:

  • Interpret Federal Government policy documentation for applicability within the supported environment including IT and cybersecurity-related Executive Orders and supporting memoranda, OMB and DHS (or other agency) guidance documentation, and industry best practices.
  • Assist the Government client to establish, verify, and/or audit IT security controls in line with:
  • NIST SP 800-53 Rev. 5 “Security and Privacy Controls for Information Systems and Organizations”
  • NIST Cybersecurity Framework
  • NIST Risk Management Framework
  • Other relevant standards and policies from OMB, DHS CISA, FedRAMP, GSA, etc.
  • Utilize your skills the with ServiceNow platform to:
  • Track the progress of the integration of designated Treasury systems into the ServiceNow GRC Module.
  • Assist the Government client in training Government staff on the use of ServiceNow and the GRC module; be able to answer questions about the ServiceNow GRC Module.
  • Support processes and workflows in the GRC Module to assist the customer to verify that controls are in place to meet organizational security objectives.
  • Create various types of documents such as presentations, reports, guidelines, policies, position papers, technical recommendations, and official Departmental responses.
  • Research and gather technical and background information for inclusion in project documentation and deliverables.
  • On behalf of the client develop, release, and track data calls for internal and/or external taskings.  Gather, integrate, and interpret information in support of data calls.
  • Collect, organize, track, and summarize organizational progress toward policy goals and benchmarks.
  • Analyze and establish project or technical requirements, including coordination across key project stakeholders.
  • Develop high-quality technical documentation for presentation to Government clients for further use and publication.
  • Provide status reports for multiple ongoing projects and related documentation efforts.

Required Qualifications:

  • Minimum Bachelor’s degree in relevant technical areas such as IT, cybersecurity, software, engineering, operations, mathematics, etc.
  • 8-10 years experience in cybersecurity and/or IT security with at least a component of the responsibilities relating to managing GRC policy, processes, and technical documentation.
  • Strong understanding of IT and cybersecurity GRC topics, solutions, and best practices.
  • Demonstrable experience with the ServiceNow platform.
  • Experience with the ServiceNow GRC Module.
  • Ability to communicate clearly in writing and verbally, with customers, project leaders, team members, program customers, and technical experts.
  • Must be a self-motivator with the ability to work remotely as part of a team, or independently with little supervision or direction.
  • Ability to produce quality work on time, and occasionally under short deadlines.
  • Excellent communication and analytical skills.
  • Strong writing and research abilities, and proficiency using the Internet as required.
  • Experience with the Microsoft Office suite of desktop software (Word, Excel, PowerPoint, and SharePoint) in order to develop and manage technical documents from first to final drafts, with proficiency in Word and Excel for developing polished, presentable information for consumption by broad audiences.

What We Can Offer You:  

Hill Associates offers a comprehensive, total rewards package, including competitive compensation and a flexible benefits package.  We are an affirmative action and equal opportunity employer committed to creating a diverse and supportive workplace. Employment decisions will be made without regard to race, color, religion, sex, age, national origin, military status, veteran status, handicap, physical or mental disability, sexual orientation, gender identity, genetic information or other characteristics protected by law.  All information you provide will be kept confidential.  Please contact Hill Associates at 202-656-6505 or via email at careers@hillasc.com.