Governance, Risk and Compliance Manager

Overview

Empower AI is AI for government. Empower AI gives federal agency leaders the tools to elevate the potential of their workforce with a direct path for meaningful transformation.

Headquartered in Reston, Va., Empower AI leverages three decades of experience solving complex challenges in Health, Defense, and Civilian missions.

Our proven Empower AI Platform provides a practical, sustainable path for clients to achieve transformation that is true to who they are, what they do, how they work, with the resources they have.

The result is a government workforce that is exponentially more creative and productive. For more information, visit .

Empower AI is proud to be recognized as a 2024 Military Friendly Employer by Viqtory, the publisher of . Jobs. This designation reflects the company’s commitment to hiring and supporting active-duty and veteran employees.

Responsibilities

The Senior Manager, Quality and Compliance is responsible for planning and directing the audit and appraisal programs used to monitor and measure the overall compliance to ISO and CMMI implementations.

In addition, the Senior Manager manages changes to the IT environment by ensuring and.

Responsibilities :

• Prepare and execute internal audit schedule for ISO 9001, 2000-1, 27001, CMMI for Development and for Services
• Provide ISO and CMMI training to audit participants and others by developing and monitoring new hire training and by preparing and administering review material tailored to specific audit participants
• Plan and act as the main interface to external auditors for ISO and CMMI external audits
• Prepare and submit the yearly budget for external audits
• Serve as Change Manager in order to ensure compliance with change review requirements
• Oversee Service Level Agreements for STIG compliance and IT vulnerability management
• Interface with system and network engineers to direct compliance activites associated with STIG compliance and vulnerability management
• Serve as POC for quality and certifications for proposal work

Qualifications

Requirements :

Education and Experience

• Bachelors Degree
• 10+ years experience implementing / auditing a Quality Management System
• PMP certification
• ITIL Foundation or Practitioner v4 certification
• DevSecOps Foundation SM certification from the DevOps Institute
• 5+ years auditing and IT ServiceManagement System and Information Security Management System

Desired :

It is STRONGLY PREFERRED that the GRC Manager have the following : a. Minimum 15 years’ experience of progressively greater authority and responsibility, in GRC-related positions, with at least 10 years Federal experience, as either a contractor or Federal employee.

b. Demonstrated success improving sub-standard FISMA audit results and FISMA metric ratings or maintaining excellent FISMA audit results and FISMA metric ratings, or both.

Demonstrated experience must include at least one (1) other audit or audit-type evolution such as A-130 or external Federal oversight.

Demonstrated success and experience must be in a broad and complex IT environment of similar size and scope. c. Bachelor’s degree in a relevant information technology discipline or in a relevant management discipline.

d. Demonstrated ability for quality oral and written communication relevant to GRC for a broad and complex IT environment of similar size and scope.

Physical Requirements :

• Communicate verbally and respond to verbal communications in person and over the phone
• Communicate clearly and succinctly in writing, primarily utilizing a keyboard
• Engage in intermittent physical activity, including bending, reaching, lifting, filing, and prolonged periods of sitting
14 days ago