ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Cloud Security GRC Consultant

Darkwolfsolutions

Herndon, VA Hybrid permanent

Posted: February 23, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

Our Cloud Security GRC Consultant in Herndon, VA is responsible for applying the NIST Risk Management Framework to complex systems hosted on Google Cloud for our federal customers.

Required Skills

Cloud Security Google Cloud FedRAMP NIST RMF Risk Management Framework Cloud Services Security Controls Compliance Documentation ATO

Job Description

Dark Wolf’s Google Cloud Security Governance, Risk, and Compliance (GRC) Consultants are the Subject Matter Experts (SMEs) responsible for applying the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and related federal security frameworks, such as Federal Risk and Authorization Management Program (FedRAMP), to complex systems hosted on Google Cloud for our federal customers. This high-impact consulting role requires a deep understanding of Google Cloud services and the ability to balance technical security control analysis, strategic risk advising, and the development of comprehensive GRC documentation. The ideal candidate will leverage experience driving systems through the Assessment & Authorization (A&A) lifecycle to achieve an Authorization to Operate (ATO), acting as a crucial liaison between technical teams, security assessors, and Authorizing Officials (AO) to translate complex cloud architecture into verifiable compliance evidence and actionable risk intelligence.

Responsibilities:

• Working collaboratively within a fast paced Agile team environment

• Staying up-to-date on the latest Google Cloud services and technologies

• Implementing security best practices for Google Cloud solutions

• Serving as the SME for all federal compliance requirements, including FedRAMP, NIST SP 800-53, and agency-specific security overlays

• Supporting development and implementation of innovative methods to achieve compliance with government and commercial cybersecurity frameworks

• Conducting detailed technical security control assessments against system components and configurations within the GCP environment, identifying gaps, risks, and recommended mitigations

• Managing the development, review, and finalization of all RMF artifacts, including but not limited to the System Security Plan (SSP), Security Controls Traceability Matrix (SCTM), and associated policies and procedures

• Providing security and compliance guidance to cloud architecture and engineering teams to ensure security is built-in (DevSecOps principles) from system design through deployment

• Utilizing Google Cloud native tools and features to aid in continuous monitoring (ConMon) activities, vulnerability management, and security posture management

• Serving as the primary liaison with the Authorizing Official (AO), security assessors (e.g., 3PAOs), and federal agency security teams during control assessments and authorization reviews

• Developing and presenting clear, compelling Plan of Action and Milestones (POA&M) entries, advising leadership on system risks, impact, and mitigation strategies

• Providing strategic consulting and recommendations to senior management and clients on evolving federal cloud security policy and best practices

• Training and mentoring junior team members or system owners on RMF processes, documentation standards, and cloud compliance methodology

Required Qualifications:

• 4+ years of relevant experience

• Experience as an RMF Consultant, ISSM/ISSO, Security Controls Validator, and/or information assurance engineer

• Hands-on with eGRC tools like: eMASS, XACTA, RSA Archer, etc.

• Ability to clearly articulate ideas for executive level consumption

• Demonstrate the ability to adopt expertise by incorporating new knowledge in real-time to solve client challenges

• Strong understanding of Google Cloud services and technologies

• Excellent communication and teamwork skills

• B.A. or B.S. Information Security, Computer Science, or related discipline

• US Citizenship and clearable up to a Secret Security Clearance

Preferred Qualifications:

• At least one Google Cloud Professional Certification

• Experience working within Agile teams

• Experience working with Google Cloud compliance products such as Security Command Center and Assured Workloads

• Experience working with customers in the U.S. Public Sector

• U.S. Federal Government security clearance

• Experience with DoD/DISA cybersecurity policies

This position will be a hybrid role based out of multiple hubs including: Herndon, VA, Tampa, FL, Huntsville, AL, Colorado Springs, CO, Ogden, UT, and Omaha, NE.

The salary range for this position is estimated to be between $100,000.00 - $140,000.00, commensurate on experience and technical skillset.

We are proud to be an EEO/AA employer Minorities/Women/Veterans/Disabled and other protected categories.

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.

We are strictly looking for direct, full-time W2 employees. We do not engage with third-party staffing agencies, C2C, or 1099 independent contractors for this role.

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply