Cybersecurity and Risk Management Framework Analyst, Senior

Key Role:

Support Cybersecurity efforts for government clients in a fast-paced, demanding environment. Review and critique assessment and authorization (A&A) documentation for compliance with DoD Cybersecurity policy and agency guidance, including DoD 8500 series, CNSS 1253, and NIST special publications. Assess program security compliance, support program briefs, and coordinate and compile program security documentation for various programs. Provide A&A and Cybersecurity support, including Risk Management Framework (RMF) for DoD IT, assessing compliance with security technical implementation guides (STIGs), reviewing automated scans, security test and evaluations (ST&E), vulnerability assessments, and computer security responses, and creating and managing RMF packages using eMASS. Interact with clients to perform technical audits. Brief client leadership on technical vulnerabilities to support the government client and prepare brief slides and summary of findings analyses.

Basic Qualifications:

-10+ years of experience with Cybersecurity and IT policies and practices

-Experience with eMASS, ACAS, STIGs, and SCAP Compliance Checker

-Secret clearance

-HS diploma or GED
-DoD 8140 IAM or IAT II Certification

-Navy Qualified Validator Level II or III

Additional Qualifications:

-Experience with Navy RMF policy documentation
-BS degree

-CISSP Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.