Location: Suitland, MD (Hybrid)
Clearance Requirement: Active Secret Clearance Preferred
Salary Range: $105,000 - $120,000 annually Who We Are RCG is a growing federal contracting company proudly Certified as a Great Place to Work. We are committed to fostering a culture of innovation, inclusion, and excellence while delivering high-quality cybersecurity and technology services to our federal government clients. The Opportunity RCG is seeking a Cybersecurity Quality Assurance & Documentation Specialist to support a federal cybersecurity program in Suitland, MD. This position provides quality assurance, cybersecurity documentation, and compliance support across a portfolio of Federal Information Security Modernization Act (FISMA) systems. The successful candidate will play a key role in ensuring cybersecurity documentation, assessment artifacts, and compliance packages meet federal standards and quality expectations. The ideal candidate is a detail-oriented cybersecurity professional with strong technical writing skills, experience supporting Risk Management Framework (RMF) activities, and the ability to work collaboratively across multiple stakeholders and cybersecurity disciplines. What You'll Do Quality Assurance & Documentation Support
- Conduct quality assurance reviews of Plans of Action and Milestones (POA&Ms), security documentation, and assessment artifacts.
- Review security authorization package documentation for completeness, consistency, traceability, and compliance with approved standards and templates.
- Ensure reports, procedures, briefings, and cybersecurity documentation are professionally formatted and technically accurate.
- Support the development and maintenance of cybersecurity quality review standards, procedures, and checklists.
- Maintain cybersecurity documentation repositories and supporting program artifacts.
Assessment & Compliance Support
- Support Security Control Assessments (SCAs), Security Test & Evaluations (ST&Es), audits, and compliance reviews.
- Coordinate the collection, validation, and organization of assessment evidence and supporting documentation.
- Review assessment packages, artifacts, and evidence for quality, accuracy, and compliance with applicable federal requirements.
- Support assessment schedules, metrics tracking, and reporting activities.
- Assist with preparation for independent assessments, audits, and security reviews.
Documentation Management & Reporting
- Maintain document repositories, version control processes, and lifecycle management activities.
- Track documentation updates, approvals, review cycles, and repository accuracy.
- Develop executive-level reports, dashboards, status updates, and compliance briefings.
- Analyze quality trends, recurring findings, and opportunities for process improvement.
AI-Enabled Process Improvement
- Utilize approved AI tools to improve documentation quality, reporting efficiency, and compliance processes.
- Support document comparisons, gap analyses, executive summaries, and artifact traceability reviews.
- Validate all AI-generated content for technical accuracy prior to submission.
What We're Looking For Required Qualifications
- Bachelor's degree from an accredited college or university.
- Minimum six (6) years of experience in cybersecurity compliance, quality assurance, documentation management, information assurance, technical writing, or a related field.
- Minimum three (3) years supporting federal cybersecurity programs.
- Experience supporting FISMA and RMF-based environments.
- Experience reviewing cybersecurity documentation, assessment artifacts, and authorization packages.
- Experience supporting audits, assessments, compliance reviews, or quality assurance initiatives.
- Strong organizational skills with the ability to manage multiple priorities and stakeholders.
- Excellent written and verbal communication skills.
Required Knowledge & Skills
- NIST Risk Management Framework (RMF)
- NIST SP 800-53 Rev. 5 Security Controls
- NIST SP 800-53A Assessment Procedures
- Federal Information Security Modernization Act (FISMA)
- Security Control Assessments (SCAs)
- Security Test & Evaluations (ST&Es)
- POA&M management concepts
- Security authorization package documentation
- Technical writing, editing, and quality assurance methodologies
- Document traceability and artifact management practices
- Google Workspace and collaboration tools
Preferred Qualifications
- Active Secret Clearance.
- Experience supporting NOAA, DOC, DHS, DoD, or other federal agencies.
- Experience working with CSAM, CSAW, or similar cybersecurity governance platforms.
- Experience supporting High Impact FISMA systems.
- Experience supporting cloud environments such as AWS, Azure, or GCP.
- Experience utilizing AI tools to improve compliance, reporting, or documentation quality.
Preferred Certifications One or more of the following:
- CompTIA Security+
- Certified in Cybersecurity (CC)
- CGRC (formerly CAP)
- CISA
- CISM
Work Environment
- Hybrid position located in Suitland, MD.
- Collaboration with cybersecurity teams, ISSOs, assessors, and compliance stakeholders.
- Fast-paced federal environment supporting multiple cybersecurity initiatives and compliance activities.
Why You'll Love Working Here
- Competitive compensation and comprehensive benefits package
- Career growth and professional development opportunities
- Collaborative, mission-focused team environment
- Meaningful work supporting federal cybersecurity programs
- Proudly Certified as a Great Place to Work
Equal Employment Opportunity RCG, Inc. is an Equal Opportunity Employer. We do not discriminate against qualified individuals based on race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other status protected by applicable law. |
RCG, Inc.
Jun 17, 2026