×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant

RMF​/ATO Consultant - U.S. Citizenship

Job in Lafayette, Lafayette Parish, Louisiana, 70595, USA
Listing for: CGI Technologies and Solutions, Inc.
Full Time position
Listed on 2026-06-02
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant
Salary/Wage Range or Industry Benchmark: 89600 USD Yearly USD 89600.00 YEAR
Job Description & How to Apply Below
Position: RMF/ATO Consultant - U.S. Citizenship Required

RMF/ATO Consultant - U.S. Citizenship Required

Category: Business Consulting, Strategy and Digital Transformation

Main location: United States, Virginia, Fairfax

Alternate Location(s): United States, Louisiana, Lafayette;
United States, Tennessee, Knoxville;
United States, Virginia, Lebanon

Position : J

Employment Type: Full Time

Position

Description:

 CGI is seeking a Risk Management Framework/Authority to Operate (RMF/ATO) Analyst to support an SAP S/4

HANA Greenfield implementation project for a large government contract. As the RMF/ATO Analyst, you will support the security compliance lifecycle for an SAP federal financials implementation, ensuring the system meets all FISMA, NIST RMF, GAO FISCAM, FedRAMP, and agency‑specific requirements. You will work closely with the SAP Basis, Security, Functional, and Infrastructure teams to develop, maintain, and validate all security artifacts required to obtain and sustain an Authority to Operate (ATO).

You will also serve as a government‑designated AISSO for the project.

This position is located in one of CGI Federal’s offices in Fairfax, VA;
Lebanon, VA;
Lafayette, LA; or Knoxville, TN; however, a hybrid working model is acceptable. You will be required to work in a CGI Federal office two days per week.

Your future duties and responsibilities:

  • Support all phases of the NIST RMF (Categorize → Select → Implement → Assess → Authorize → Monitor) for SAP financial modules (FM/GL, SD/AR, FI/CO, BW/BI, Procurement, etc.).
  • Develop and maintain ATO package artifacts.
  • Ensure the official government FISMA record and artifacts are updated as required in the government JCAM/CSAM GRC system.
  • Support the Security Control Assessor (SCA) during walkthroughs, evidence collection, interviews, and testing.
  • Perform internal control reviews for both NIST security controls and FISCAM internal controls, and conduct readiness assessments prior to formal assessments.
  • Track, resolve, and validate findings from vulnerability scans, penetration tests, and audit actions.
  • Coordinate with SAP Security Role Design teams to ensure authorization concepts align with RMF control requirements and best practices.
  • Validate the implementation of logging, audit trails, and monitoring across SAP.
  • Support triage and remediation of ongoing vulnerabilities and compliance items.
  • Carry out assigned duties in the AISSO role.

Required qualifications to be successful in this role:

  • Due to contract requirements, U.S. citizenship and successful completion of a CGI background check are required prior to starting work. Candidates must also have the ability to obtain and maintain a DHS EOD/Public Trust clearance.
  • 3–6 years of experience supporting RMF, FISMA, or federal cybersecurity compliance.
  • Understanding of NIST SP 800‑37, 800‑53, 800‑30, and related federal security publications.
  • Experience supporting enterprise‑class systems.
  • Familiarity with system architecture diagrams, network security principles, and cloud/on‑prem hosting models.
  • Ability to manage moderately complex work independently and escalate appropriately.
  • Strong writing and documentation skills.

Desired qualifications:

  • Experience with federal SAP Financials (FM, FI/CO, SD/AR), SAP Basis, or SAP Security Role Design teams.
  • Familiarity with government GAO FISCAM security controls for financial systems.
  • Experience with GRC tools (JCAM/CSAM), scanner outputs (ACAS, Nessus, App Detective), and SIEM platforms.
  • Relevant certifications (Security+, CAP, CISSP, Associate of CISSP, CISM).

CGI is required by law in some jurisdictions to include a reasonable estimate of the compensation range for this role. The determination of this range includes various factors not limited to skill set, level, experience, relevant training, and licensure and certifications. The current range for this role in the U.S. is $89,600.00 - $.

Benefits:

  • Competitive compensation
  • Comprehensive insurance options
  • Matching contributions through the 401(k) plan and the share purchase plan
  • Paid time off for vacation, holidays and sick time
  • Paid parental leave
  • Learning opportunities and tuition assistance
  • Wellness and well‑being programs

Qualified applicants will receive consideration for employment without regard…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search