IT Security Operations Analyst - Senior

DecisionPoint | Cortek

17h•Remote

About The Position

The Government Publishing Office (GPO) SecDevOps program provides advanced security, development, and operations support to safeguard federal information systems and infrastructure. This initiative integrates cybersecurity best practices with agile development and IT operations to ensure continuous security, compliance, and resilience across GPO’s enterprise IT services. The mission is to protect and enable GPO’s digital transformation by delivering secure, scalable, and reliable IT services in alignment with federal cybersecurity mandates and operational excellence standards. DecisionPoint Corporation is seeking a Senior IT Security Operations Analyst to provide expert-level support to the GPO IT Security Division, leading the development and operations of the Technical Reference Model (TRM) toolset, and supporting the full lifecycle of Risk Management Framework (RMF) artifacts. This position plays a critical role in securing GPO’s enterprise systems by ensuring consistent development, implementation, and operation of IT security controls across IT/Operations (ITOps) and enterprise service environments. The role demands close coordination with program managers, system owners, and security stakeholders to maintain the integrity and compliance of the GPO's security posture. This position is remote with some local travel to GPO headquarters. Location: Remote – candidates located in the Washington, DC metropolitan area (DMV) are highly preferred. Clearance Requirement: Must be able to obtain and maintain a Public Trust clearance. Note: By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid. Please Note: This requisition is contingent upon contract award.

Requirements

Minimum Experience: 8 years of experience in Federal cybersecurity operations or IT security analysis
Minimum Education: Bachelor’s degree in Computer Science, Information Systems, other related disciplines (or equivalent experience)
Technical Knowledge: Hands-on experience with RMF processes, security documentation, and artifact generation. Familiarity with TRM tools, NIST standards (800-37, 800-53, 800-171), and FISMA compliance. Proficiency in using security tools (e.g. Tenable, Trellix, RSA NetWitness, Microsoft Sentinel, or Xacta).

Nice To Haves

Federal experience (preferred)
Certifications (preferred): CompTIA Security+ or CISSP

Responsibilities

Lead the development and enhancement of the GPO Technical Reference Model (TRM) tools to support agency-wide architecture, IT capabilities, and security control integration.
Create supporting documentation including project plans, risk analyses, test plans, deployment guides, and supply chain risk management artifacts.
Collaborate with ITOps divisions (Customer Support, Infrastructure, Enterprise Services, and Network Messaging) to design and deploy IT security technologies and processes.
Ensure security controls are embedded in infrastructure projects and day-to-day operations.
Perform ongoing testing, implementation, and support of operational security tools across the enterprise.
Maintain and update SOPs, white papers, configuration change documents, patch/upgrade schedules, and artifact repositories in accordance with compliance requirements.
Assist in the assessment, implementation, and maintenance of security measures for GPO systems in alignment with NIST SP 800-37 and SP 800-53.
Develop, update, and maintain RMF documentation such as security control assessments, POA&Ms, and boundary diagrams.
Support security incident response and vulnerability mitigation based on RMF analysis and operational findings.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume