About Saliense

At Saliense, we are committed to fostering a culture of continuous learning and professional growth. Our employees are encouraged to take on challenging and meaningful work, with ample opportunities for career advancement. We offer competitive compensation and benefits, including:

• 20 Days PTO + 40 Hours of Paid Sick & Safe Time
• 11 Federal Holidays + 2 Corporate Holidays
• Health, Vision, Dental, and Life Insurance
• 401(k) with Tiered Match & 100% Vesting
• Parental Leave for Birthing and Non-Birthing Parents
• Professional Development Reimbursement Program

We believe in empowering our team members to achieve their professional goals while contributing to impactful projects that make a difference. Join us at Saliense and be part of a growing organization dedicated to innovation, collaboration, and excellence. Visit www.saliense.com to learn more. 

There are many more - connect with us to get a preview of the full benefits package.

About the role

The RMF Subject Matter Expert (SME) provides technical and functional leadership for the implementation, operation, and modernization of Governance, Risk, and Compliance (GRC) platforms, with a primary focus on CSAM and RegScale. This role supports federal Risk Management Framework (RMF) activities by ensuring GRC tools are properly configured, maintained, and aligned with NIST and FISMA requirements. The RMF SME partners with cybersecurity, engineering, and compliance stakeholders to support system authorizations, continuous monitoring, tool migrations, and data integrations while ensuring audit-ready documentation and evidence is maintained throughout the system lifecycle.

What you'll do

• Provide RMF subject matter expertise for the configuration, operation, and sustainment of GRC platforms (CSAM and/or RegScale) authorization and continuous monitoring activities.
• Support GRC platform implementations and system migrations, including data mapping, control inheritance alignment, workflow configuration, and validation of migrated RMF artifacts.
• Perform independent quality assurance reviews of RMF artifacts (SSPPs, POA&Ms, risk assessments, and authorization packages) managed within the GRC tool to ensure accuracy, completeness, and compliance with federal requirements.
• Provide RMF SME support and guidance on GRC integrations with enterprise systems such as asset inventories, vulnerability management tools, SIEM platforms, and cloud service providers (AWS, Azure, GCP).
• Develop and maintain standardized RMF workflows, templates, and approval processes within the GRC platform.
• Support from a requirements perspective user and service account management, implementing RBAC, least-privilege access, and SSO integration.
• Support the development of SOPs, runbooks, and migration documentation related to RMF and GRC operations.

Qualifications

• Minimum four (4) years of experience required
• Bachelors Degree required
• Very strong working knowledge of NIST RMF, NIST SP 800-53 Rev. 5, and FISMA.
• Experience using CSAM and/or RegScale in a federal or regulated environment.
• Experience supporting RMF system migrations and tool modernizations.
• Experience supporting audits and system authorizations.
• Ability to translate RMF and compliance data into actionable insights.
• Strong collaboration and stakeholder engagement skills.