Cyber Analyst

Peraton,
$112,000 - $179,000Hybrid

About The Position

Peraton is seeking a Cyber Analyst to join their team in the Washington DC Metro area. This role is primarily remote, with occasional travel to the Quantico client site as needed. The Cyber Analyst will be responsible for leading and executing Risk Management Framework (RMF) compliance activities in accordance with DoD and NIST requirements to support system accreditation and Authority to Operate (ATO) efforts. This includes conducting STIG and SRG assessments, managing compliance documentation, analyzing vulnerability scan results, and developing and tracking Plans of Action & Milestones (POA&Ms). The role also involves performing application security testing, investigating and resolving security findings, collaborating with various teams to implement security controls, and creating/managing cybersecurity artifacts within eMASS. The analyst will support cybersecurity audits and ensure adherence to best practices and evolving security standards throughout the system lifecycle, contributing to security governance and continuous improvement initiatives in an Agile/DevSecOps environment. Effective communication with both technical and non-technical stakeholders is essential.

Requirements

  • 8 years with a BS/BA, 6 years with a MS/MA or 12 years of experience in lieu of a degree
  • Proven experience in cybersecurity roles such as Cybersecurity Analyst, Cybersecurity Engineer, ISSO, ISSM, or related positions.
  • Strong knowledge of the DoD Risk Management Framework (RMF), NIST 800-53 controls, STIGs, SRGs, and system accreditation processes.
  • Experience supporting Authority to Operate (ATO) efforts, including development and management of RMF artifacts.
  • Hands-on experience with STIG assessments, ACAS vulnerability scanning and reporting, POA&M management, SSP development, PPSM, CONOPS, and eMASS.
  • Working knowledge of AWS and cloud computing environments.
  • One or more of the following certifications: CISSP (preferred), CASP+, Security+, CEH, CISA, SSCP, or GSEC.
  • Active Secret clearance.
  • Must be local to the Washington DC Metro area.

Nice To Haves

  • CISSP certification

Responsibilities

  • Lead and execute RMF compliance activities in accordance with DoD and NIST requirements, supporting system accreditation and ATO efforts.
  • Conduct STIG and SRG assessments across Windows, Linux, database, cloud, and application environments using tools such as SCC and STIG Viewer.
  • Manage STIG matrices, Security Configuration Guides (SCGs), and compliance documentation.
  • Analyze vulnerability scan results, develop and maintain POA&Ms, and track remediation activities to closure.
  • Perform static and dynamic application security testing and source code analysis using tools such as Checkmarx, SonarQube, Burp Suite, and X-Ray.
  • Investigate, prioritize, and resolve security findings identified through vulnerability scans, assessments, and continuous monitoring activities.
  • Collaborate with engineering, operations, and development teams to implement effective security controls and remediation strategies.
  • Create, maintain, and manage cybersecurity artifacts, including SSPs, POA&Ms, and supporting documentation within eMASS.
  • Support cybersecurity audits, inspections, security assessments, and compliance reviews.
  • Ensure adherence to cybersecurity best practices, DoD requirements, and evolving security standards throughout the system lifecycle.
  • Contribute to security governance, continuous monitoring, and continuous improvement initiatives within an Agile/DevSecOps environment.
  • Communicate effectively with technical and non-technical stakeholders to support mission and compliance objectives.

Benefits

  • Overtime
  • Shift differential
  • Discretionary bonus
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service