Cyber Security Specialist (Top Secret cleared)

ICF•Washington, DC

1d•Remote

About The Position

We are seeking a Senior Cybersecurity Engineer with deep experience supporting the Risk Management Framework (RMF) and Authorization to Operate (ATO) lifecycle for federal information systems. This role focuses on STIG compliance, vulnerability management, POA&M tracking, and incident response for high‑impact systems operating in classified environments. ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. ICF is a global consulting and technology services company with approximately 9,000 employees. At ICF, business analysts and policy specialists work together with digital strategists, data scientists and creatives. We combine unmatched industry expertise with cutting-edge engagement capabilities to help organizations solve their most complex challenges. Since 1969, public and private sector clients have worked with ICF to navigate change and shape the future.

Requirements

10+ years of experience supporting RMF / ATO processes for federal information systems.
Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or a related field.
Active Top Secret / SCI clearance.

Nice To Haves

Preference to candidates who has experience supporting DCSA or a federal agency.
Relevant cybersecurity certifications (e.g., CISSP, CISM, CAP, CEH, or Security+).
Hands-on experience with eMASS, including package creation and ongoing maintenance.
Strong working knowledge of STIG compliance, vulnerability scanning, and remediation processes.
Experience managing and reporting POA&Ms through resolution.
Familiarity with Nessus and other vulnerability assessment and STIG scanning tools.
Experience supporting or participating in incident response efforts within a classified or regulated environment.
Solid understanding of NIST RMF and federal cybersecurity compliance requirements.
Background working in classified cloud or hybrid environments.
Experience with continuous monitoring and ATO sustainment activities.
Familiarity with DISA STIGs, ACAS, or similar DoD-aligned security tools.

Responsibilities

Provide end-to-end RMF and ATO support, including development, maintenance, and submission of security authorization packages.
Manage and maintain eMASS artifacts, ensuring accuracy, completeness, and audit readiness.
Conduct and oversee STIG compliance activities across operating systems, databases, and platforms; document findings and remediation actions.
Identify, track, and manage Plans of Action and Milestones (POA&Ms), coordinating with technical teams to drive remediation to closure.
Perform and review vulnerability assessments using tools such as Nessus and STIG scanning utilities; analyze results and recommend mitigation strategies.
Support incident response activities, including investigation, reporting, and coordination with security leadership and stakeholders.
Develop and update RMF documentation such as SSPs, SARs, RARs, and continuous monitoring artifacts.
Collaborate with ISSOs, ISSEs, system owners, developers, and program leadership to ensure ongoing compliance with federal and DoD cybersecurity requirements.
Support continuous monitoring activities and ATO renewals in accordance with NIST, DoD, and agency-specific guidance.