Skip to main content
Tallo logoTallo logo
Apply for this opportunity

To apply for this job, you'll continue to an external website or email application.

IT and Cyber Risk Auditor

Job

General Dynamics Information Technology

Falls Church, VA (In Person)

Full-Time

Posted 3 days ago (Updated 1 day ago) • Actively hiring

Expires 8/11/2026

Review key factors to help you decide if the role fits your goals.
Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
74
out of 100
Average of individual scores

Were these scores useful?

Skill Insights

Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.

Job Description

Job Requirements Falls Church, VA Top Secret Polygraph Unspecified Career Level not specified Salary not specified Join Premium to unlock estimated salaries Job Description Help safeguard critical government systems by applying your hands-on
ISSM/ISSO
experience to security governance, risk evaluation, and compliance oversight. As an IT and Cyber Risk Auditor at GDIT, you will leverage your background managing RMF controls, system documentation, and continuous monitoring activities to deliver thorough, accurate, and mission-focused security assessments. This role is ideal for cybersecurity professionals who have previously served as an ISSM or ISSO and are seeking to transition into a dedicated risk, audit, and compliance position where they can influence security posture across multiple systems and programs. As an IT and Cyber Risk Auditor, the work you do at GDIT will have a direct and measurable impact on our customer's mission. You'll help ensure the integrity, security, and compliance of their IT systems by identifying potential risks, validating critical controls, and supporting continuous improvement efforts. Your work will enhance operational resilience and enable the customer to execute their mission with confidence.
  • Conduct comprehensive security audits and RMF control assessments in accordance with DCSA, JSIG, and SAP security requirements, leveraging prior
ISSO/ISSM
experience.
  • Review, validate, and improve security documentation and artifacts such as SSPs, POA&Ms, Continuous Monitoring outputs, and other evidence required by RMF and DCSA assessment standards.
  • Develop, implement, and oversee operational information system security policies and guidelines aligned with the Risk Management Framework (RMF), JSIG, and applicable DCSA directives.
  • Evaluate system security controls for effectiveness, completeness, and compliance with NIST SP 800-53, DCSA/DoW requirements, JSIG standards, and internal organizational policies.
  • Collaborate with ISSOs, ISSMs, SAP security personnel, and technical teams to analyze findings, recommend remediation actions, and ensure timely correction of identified vulnerabilities.
  • Analyze system changes, configuration updates, and vulnerability data to determine authorization impacts, risk-level changes, and required updates under RMF and
JSIG/SAP
processes.
  • Support ongoing ATO and SAP authorization maintenance by tracking assessments, evidence submissions, and documentation required throughout the RMF and JSIG lifecycles.
  • Prepare and deliver clear, risk-focused briefings to system owners, DCSA assessors, SAP authorities, and other stakeholders regarding compliance status, audit results, and security-related decisions. Bring your cyber expertise and drive for innovation to GDIT. The IT and Cyber Risk Auditor must have:
Education:
Bachelors degree
    Experience:
    2+ years of related experience as a prior
    ISSO/ISSM.
    In lieu of degree, additional 4+ years of work experience/training/education will be required
      Certifications:
      IAT II (Security +, SSCP, CCNA Security)
      • Technical skills: Strong understanding of NIST SP 800-53, DoW cybersecurity requirements, and control implementation/assessment practices. Familiarity with Windows/Linux environments, vulnerability tools, and security baselines.
      • Prior SAP experience desired
      • Security clearance: Must have an active Top Secret clearance in order to be considered, and the ability to obtain and maintain TS/SCI clearance.
      • US citizenship required
      • Role requirements: Onsite, 5 days/week in Falls Church, VA office location At GDIT, the mission is our purpose, and our people are at the center of everything we do.
      Growth:
      AI-powered career tool that identifies career steps and learning opportunities.
        Support:
        An internal mobility team focused on helping you achieve your career goals.
          Rewards:
          Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off.
            Community:
            Award-winning culture of innovation and a military-friendly workplace.
            OWN YOUR OPPORTUNITY
            Explore a career in cyber at GDIT and you'll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.
            group id:
            90979310 Apply now