Senior Cybersecurity Assessment and Authorization (A&A) Analyst

About The Position

Requirements

• Education: Master’s in STEM / Program Management / or Cyber-related field or equivalent from an accredited institution with 5 years of cyber management experience
• Acceptable alternative: Bachelor's Degree in STEM / Program Management / Cyber-related field with 8years DoD cyber experience and knowledge demonstrated in cyber and missile defense related or other complex, large DoD programs / projects
• IAM III Certification prior to accepting position - no exceptions
• eMASS Certification prior to accepting position - no exceptions

Responsibilities

• Applies knowledge of Cyber policy, procedures, and workforce structure to develop, implement, and maintain a cyber-secure environment.
• Relies on extensive experience and judgment to plan and accomplish enclave security related goals.
• Supervises IAM and IAT personnel - Reports to government managers for enclave operational requirements.
• Leads cyber management and operations for enclave(s) / systems / sites.
• Leads and manages full RMF lifecycle activities in accordance with NIST SP 800‑37, NIST SP 800‑53, DoDI 8510.01, and DoD component policies.
• Develops, updates, and maintains all A&A documentation, including SSPs, SCTMs, POA&Ms, continuous monitoring plans, and audit‑ready artifacts.
• Prepares systems for initial ATO, ATO renewals, interim authorizations, and continuous monitoring requirements.
• Manages and maintains eMASS packages, ensuring accurate, timely, and compliant submissions.
• Conducts assessments and validations of security controls, analyzing vulnerability results (ACAS, SCAP) and tracking remediation efforts.
• Drafts and maintains cybersecurity SOPs, ISAs, and governance documentation to support secure system operation and external connections.
• Ensures compliance with FISMA, DoD cybersecurity policies, and organizational directives through ongoing evaluation and exercises.
• Identifies threats, vulnerabilities, and risk impacts; develops, manages, and monitors mitigation actions and POA&M entries.
• Provides expert cybersecurity guidance to leadership, system owners, engineers, AOs, SCAs, ISSMs, and other stakeholders.
• Supports audits and enterprise cybersecurity governance by compiling, editing, and coordinating policies, strategies, and operational guidance.

Benefits

• 401(k) Matching
• Company Events
• Dental Insurance
• Employee Recognition Programs
• Health Insurance
• Life Insurance
• Paid Time Off
• Parental Leave
• Performance Incentives
• Student Loan Repayment
• Tuition Reimbursement
• Vision Insurance