REQ#: RQ185179Public Trust: None Requisition Type: Regular Your Impact

Own your opportunity to be at the center of GDIT’s business operations. Make an impact by collaborating across functions to make mission success achievable.

Job Description

The Cyber Risk & Compliance Manager is responsible for supporting GDIT’s audit and compliance processes. This position will report directly to the Sr. Manager IT Risk & Compliance and work closely with General Dynamics internal audit, external auditors, and key process/control owners throughout the organization to maintain effective, consistent and cost-efficient IT control processes across multiple regulatory requirements.

HOW YOU WILL MAKE AN IMPACT:

Partner with internal and external auditors to support Cyber control assessments and help facilitate testing plans and support initiatives related to internal controls, compliance requirements, privacy, and cyber initiativesOversee program for continuous monitoring of Cyber, IT and Artificial Intelligence riskSupport contract and cyber regulatory compliance to home office functions, programs, and divisions (e.g., Defense, FedCiv, IHS) where applicableProvide and coordinate the delivery of relevant awareness training to control and process ownersOversee Cyber Control Self Assessments (CSA) process and maintain control and process owner matrixManage Cyber remediation plans through escalation and completionAssist with the acquisition, implementation and maintenance of a Governance Risk and Compliance (GRC) tool.Prepare and present status to Cyber Risk & Compliance team and CISO when needed

WHAT YOU’LL NEED TO SUCCEED:

Bachelors degree OR in lieu of degree, an additional 4+ years of professional training or work experience is requiredPossess at least one related professional certification e.g.: CISSP, CISA, CISMMinimum five (5) years experience in Governance, Risk, and Compliance roles for Cyber or ITExperience in cyber security and privacy regulatory controls frameworks such as Cybersecurity Maturity Model Certification (CMMC), NIST 800-171, NIST Risk Management Framework, ISO 27001, ISO 28001, etc.Strong knowledge of IT general controls, audit methodologies and Cyber compliance issuesStrong data analysis experience and skills; must be able to dive deep into data, call out trends, and make recommendations to influence resultsProven ability to independently evaluate controls over Cyber and/or IT processesAble to assert own ideas and actively demonstrate influencing skills to persuade others at all levels in the companyExcellent written and verbal communication skills; must be able to succinctly and accurately articulate information and dataPrevious experience executing Cyber or IT Governance, Risk & Compliance initiativesUS Persons requiredPreferred experience in government contract industryPreferred experience in Artificial Intelligence risk

GDIT IS YOUR PLACE:

Full-flex work week to own your priorities at work and at home401K with company matchComprehensive health and wellness packagesInternal mobility team dedicated to helping you own your careerProfessional growth opportunities including paid education and certificationsCutting-edge technology you can learn fromRest and recharge with paid vacation and holidays