Job Description 1. Platform Administration & Maintenance: • Coordinate installation, configuration, patching, and version upgrades for Qmulos instances across multiple networks. • Ensure system availability, conduct performance tuning, and manage backup and recovery procedures for all GRC tool data and configurations. • Perform account management (approval, removal, modification) on GRC platforms, define roles and permissions based on the principle of least privilege, and manage access control lists (ACLs). • Troubleshoot and resolve complex technical issues related to application performance, data integration, and user access. 2. RMF & Compliance Workflow Management: • Configure and customize workflows within GRC platforms to support the DOD Risk Management Framework (RMF) and other cybersecurity processes. • Manage the import and inheritance of security controls, test procedures, and assessment results within the GRC tools. • Serve as the primary technical point of contact for all matters related to the GRC platforms during security control assessments, audits, and inspections. • Develop and maintain system templates, custom fields, and data schemas to support accurate and consistent RMF package development. • Continuously identify and implement process improvements, automation, and tool optimizations within the GRC/RMF platform to increase efficiency, consistency, and audit readiness. 3. Continuous Monitoring & Data Integration (Qmulos): • Administer the Qmulos platform, leveraging its Splunk foundation to provide real-time compliance visibility. • Develop and configure data inputs and API integrations to pull security data from various sources (e.g., ACAS/Nessus, HBSS/ESS, SCAP scanners, log sources) into Qmulos. • Build and customize Q-Compliance and Q-Audit dashboards to provide leadership with actionable intelligence on security posture, control effectiveness, and risk levels. • Automate the validation of security controls by correlating technical data with RMF control requirements. 4. User Support & Stakeholder Collaboration: • Provide expert-level support and training to system owners, Information System Security Officers (ISSOs), and Security Control Assessors (SCAs) on the effective use of GRC platforms such as, Xacta, eMASS, eMASSter, STIG Viewer and Qmulos. • Develop and maintain comprehensive documentation, including standard operating procedures (SOPs), configuration guides, and training materials. • Collaborate with cybersecurity engineering teams to ensure GRC platforms are properly integrated into the broader security architecture. • Provide weekly, monthly and ad-hoc on demand reports to team and leadership based on trending data from month to month. Present and hold meetings on the data in order to focus on key points to stakeholders 65/hr and 135,000 We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/. Skills and Requirements -Minimum of 5-7 years of experience in cybersecurity or information assurance within the DoD or IC. -Minimum of 3 years of direct, hands-on administrative experience with at least two of the three specified tools (Xacta, eMASS, Qmulos), -Proficiency in Linux (RHEL) and/or Windows Server administration. -Familiarity with scripting languages (e.g., Python, PowerShell, Bash) for automation. -IAT Level 2 Certification -Willing to go on site 5 days a week -Active Top Secret clearable to the SCI