Senior Information Security Cyber Analyst
Role details
Job location
Tech stack
Job description
- Support the development, maintenance, review, and tracking of Navy RMF packages and
cybersecurity authorization artifacts.
- Process RMF packages through the Navy RMF lifecycle in support of IATT, ATO, ASR, and
other authorization activities.
- Assess information systems using NIST 800-53 security controls, DISA STIGs, DISA SRGs, and
Navy cybersecurity guidance.
- Develop, review, and maintain RMF documentation, including:
o Security Plans / System Security Plans
o Security Assessment Plans and supporting test documentation
o Risk Assessments
o Plans of Action and Milestones (POA&M) mitigation statements
o System and site policies, procedures, and processes
o Architecture diagrams
o Hardware and software inventories
o Vulnerability and compliance artifacts
- Use eMASS, ACAS, and VRAM to support package development, vulnerability tracking,
evidence management, and continuous monitoring.
- Review ACAS scans, STIG checklists, Evaluate-STIG / SCAP results, and other technical
assessment artifacts for accuracy, completeness, and compliance.
- Identify cybersecurity risks, document findings, recommend mitigation actions, and support
closure of vulnerabilities.
- Coordinate with Government cybersecurity personnel, ISSMs, ISSOs, system owners,
administrators, engineers, and other contractor personnel to resolve RMF and compliance
issues.
- Support configuration management, change control, inventory validation, vulnerability
remediation, and cybersecurity audit readiness activities.
- Provide clear status updates, maintain organized documentation, and deliver high-quality
customer support to Navy stakeholders.
Requirements
Do you have experience in Vuls?, * DoD 8570.01 M / DoD 8140 compliant certification at IAT / IAM Level III such as CISSP, CASP+
CE, CISA, GCIH, GCED, CCSP, CCNP Security, or other senior-level certification
- Experience with ACAS (Nessus), NIST 800-53, DISA STIGs/SRGs, IAVM processes, and Risk
Management Framework (RMF)
Job Type: Full-time
Benefits & conditions
Pulled from the full job description
- Professional development assistance
- Health insurance
- Paid time off
- Dental insurance, * 401(k)
- Dental insurance
- Health insurance
- Paid time off
- Professional development assistance
Schedule: Monday to Friday, 8-hour shift
License/Certification:
- Security + (Required)
- CISSP: Certified Information Systems Security Professional
Security clearance: Current active 'SECRET' (Required)