Cyber Information Assurance Specialist in Alexandria, Virginia at Gunnison Consulting Group

* This position is contingent upon a future opening with Gunnison.

Salary: $140,000-$155,000

Work location: Hybrid, 2-3 days per week on-site in Alexandria, VA. The first 30 days of work will be full-time on-site.

• Provide cybersecurity audit management support to ensure compliance with federal regulations, agency policies, and information assurance requirements.
• Maintain, update, and develop Audit Management Standard Operating Procedures (SOPs) and related documentation.
• Support and coordinate cybersecurity audits and assessments, including FISMA, High Value Asset (HVA), Inspector General (OIG), Government Accountability Office (GAO), CFO, and internal control audits.
• Maintain and manage audit request and response repositories, ensuring audit artifacts and supporting documentation are accurate, complete, and accessible to stakeholders.
• Conduct independent research, gather audit evidence, and prepare responses to auditor requests in accordance with established timelines and requirements.
• Collaborate with internal and external stakeholders to coordinate audit activities, collect documentation, and support remediation efforts.
• Track audit findings, recommendations, corrective actions, and Plans of Action & Milestones (POA&Ms) through remediation and closure.
• Assist with risk management activities by monitoring audit-related risks and supporting mitigation efforts to maintain acceptable risk levels.
• Facilitate recurring audit meetings, provide status updates, and communicate audit progress, risks, and remediation activities to management and stakeholders.
• Develop and maintain audit performance metrics, dashboards, and reports to measure program effectiveness and compliance status.
• Support the preparation, review, and submission of audit responses, reports, and compliance documentation for leadership review.
• Ensure audit deliverables, responses, and remediation activities are completed accurately and within established deadlines.

• US Citizenship required
• Master’s degree in Information Management Systems or related field
• 7+ years IT/security experience, including 3+ years supporting a federal Information Security Program
• Experience with FISMA, FedRAMP, FIPS, NIST SPs, RMF, CSF
• Experience executing A&A, developing risk recommendations, and managing GRC programs (RSA Archer)
• Certifications: CISSP and CISA (mandatory)

Clearance Requirement: Ability to obtain and maintain a Public Trust.

The salary range for this position depends upon multiple factors including location, the individual's knowledge, skills, competencies, and experience, and contract-specific budget constraints and organizational requirements.
Gunnison Consulting Group's total compensation package also includes bonus and profit-sharing opportunities, depending on company and employee performance. Available employee benefits include:

• 3 weeks of Personal Leave your first year
• 11 paid Holidays each year
• 5 days of Flexible Time Off each year for approved training or certifications (self-study is ineligible)
• 401(k) company match at 50% up to 10% of your salary
• Medical, Dental and Vision Insurance
• Life and Disability Insurance
• Public Transportation Subsidies
• Certifications and Training Allowance - Up to $5,000/year!

Why Join Gunnison?

• Gunnison takes on ambitious projects. We target fun, challenging work that requires creative thinking and innovation.
• Quality is our top priority.
• Gunnison employee benefits meet or exceed what other companies in the Washington, D.C. metropolitan area offer.
• There is a great sense of camaraderie at Gunnison. This is an atmosphere we will maintain as we continue to grow.
• We are growing rapidly and the opportunity for individual professional growth with Gunnison is outstanding.
• We hire for careers at Gunnison, not to fill a position.

Equal Opportunity/Affirmative Action Employer. Must be eligible for employment in the United States. We are unable to sponsor candidates at this time.
In 1994 Gunnison began serving the greater Washington, D.C. metro area, focused on tackling our customers' most ambitious technology projects. By creating a culture dedicated to enabling our customers and employees to achieve more than they ever thought they could, the company has thrived for over 25 years.