Cybersecurity Analyst

About The Position

Requirements

• Active Secret Clearance.
• Bachelor’s degree in cybersecurity, computer science, engineering, or a related discipline.
• Minimum of five (5) years of professional experience in cybersecurity or cybersecurity engineering.
• DoD 8570.01-M IAM Level III baseline certification.
• Experience applying the Risk Management Framework (RMF) to large, complex information systems.
• Experience supporting ATO processes, cybersecurity compliance activities, and continuous monitoring programs.
• Hands-on experience with Assured Compliance Assessment Solution (ACAS), SCAP, STIGs, and Evaluate STIG tools.
• Experience with Enterprise Mission Assurance Support Service (eMASS), Host Based Security System (HBSS), and endpoint security technologies.
• Familiarity with cloud security, virtualization technologies, and Identity and Access Management (IAM) concepts.
• Experience with SIEM tools such as Splunk and cybersecurity monitoring solutions.
• Knowledge of network security technologies, including IDS/IPS tools and data loss prevention (DLP) solutions.
• Familiarity with scripting or automation tools such as Python and PowerShell.
• Strong analytical, communication, documentation, and briefing skills.

Nice To Haves

• Experience supporting biometric or identity management systems within DoD environments.
• Familiarity with Army or other DoD cybersecurity fielding and sustainment processes.
• Experience supporting cloud-based cybersecurity architectures and Zero Trust initiatives.
• Knowledge of IoT, AI/ML, and emerging cybersecurity technologies.
• Experience supporting Windows Server Update Services (WSUS) and enterprise patch management activities.

Responsibilities

• Support RMF activities and ensure compliance with DoDI 8510.01 requirements for DoD IT systems.
• Create, staff, and process RMF documentation to support system fielding schedules and ATO requirements.
• Support ATO activities, certification efforts, and continuous monitoring processes.
• Perform technical cybersecurity assessments using ACAS, SCAP, STIGs, and related security tools.
• Identify system vulnerabilities and develop Plans of Action and Milestones (POA&Ms) to address security deficiencies.
• Recommend and implement remediation strategies for cybersecurity findings and compliance gaps.
• Prepare and brief cybersecurity readiness updates, milestone reviews, and program status reports to government leadership and stakeholders.
• Adjudicate and resolve cybersecurity issues, incidents, and potential cyber breaches.
• Support cloud, network, and endpoint security operations across enterprise environments.
• Coordinate with program teams and government customers to ensure cybersecurity requirements are integrated into system operations and fielding activities.