Cybersecurity Quality Assurance & Documentation Specialist
Listed on 2026-07-02
-
IT/Tech
Cybersecurity
Cybersecurity Quality Assurance & Documentation Specialist
Location: Suitland, MD (Hybrid)
Clearance Requirement: Active Secret Clearance Preferred
Salary Range: $105,000 - $120,000 annually
RCG is a growing federal contracting company proudly Certified™ as a Great Place to Work®. We are committed to fostering a culture of innovation, inclusion, and excellence while delivering high-quality cybersecurity and technology services to our federal government clients.
The OpportunityRCG is seeking a Cybersecurity Quality Assurance & Documentation Specialist to support a federal cybersecurity program in Suitland, MD.
This position provides quality assurance, cybersecurity documentation, and compliance support across a portfolio of Federal Information Security Modernization Act (FISMA) systems. The successful candidate will play a key role in ensuring cybersecurity documentation, assessment artifacts, and compliance packages meet federal standards and quality expectations.
The ideal candidate is a detail-oriented cybersecurity professional with strong technical writing skills, experience supporting Risk Management Framework (RMF) activities, and the ability to work collaboratively across multiple stakeholders and cybersecurity disciplines.
What You'll Do- Conduct quality assurance reviews of Plans of Action and Milestones (POA&Ms), security documentation, and assessment artifacts.
- Review security authorization package documentation for completeness, consistency, traceability, and compliance with approved standards and templates.
- Ensure reports, procedures, briefings, and cybersecurity documentation are professionally formatted and technically accurate.
- Support the development and maintenance of cybersecurity quality review standards, procedures, and checklists.
- Maintain cybersecurity documentation repositories and supporting program artifacts.
- Support Security Control Assessments (SCAs), Security Test & Evaluations (ST&Es), audits, and compliance reviews.
- Coordinate the collection, validation, and organization of assessment evidence and supporting documentation.
- Review assessment packages, artifacts, and evidence for quality, accuracy, and compliance with applicable federal requirements.
- Support assessment schedules, metrics tracking, and reporting activities.
- Assist with preparation for independent assessments, audits, and security reviews.
- Maintain document repositories, version control processes, and lifecycle management activities.
- Track documentation updates, approvals, review cycles, and repository accuracy.
- Develop executive-level reports, dashboards, status updates, and compliance briefings.
- Analyze quality trends, recurring findings, and opportunities for process improvement.
- Utilize approved AI tools to improve documentation quality, reporting efficiency, and compliance processes.
- Support document comparisons, gap analyses, executive summaries, and artifact traceability reviews.
- Validate all AI-generated content for technical accuracy prior to submission.
Required Qualifications
- Bachelor's degree from an accredited college or university.
- Minimum six (6) years of experience in cybersecurity compliance, quality assurance, documentation management, information assurance, technical writing, or a related field.
- Minimum three (3) years supporting federal cybersecurity programs.
- Experience supporting FISMA and RMF-based environments.
- Experience reviewing cybersecurity documentation, assessment artifacts, and authorization packages.
- Experience supporting audits, assessments, compliance reviews, or quality assurance initiatives.
- Strong organizational skills with the ability to manage multiple priorities and stakeholders.
- Excellent written and verbal communication skills.
- NIST SP 800-53 Rev. 5 Security Controls
- NIST SP 800-53A Assessment Procedures
- Federal Information Security Modernization Act (FISMA)
- Security Control Assessments (SCAs)
- Security Test & Evaluations (ST&Es)
- POA&M management concepts
- Security authorization package documentation
- Technical writing, editing, and quality…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).