RMF Cybersecurity Analyst (Windows Systems)

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field with 6+ years of experience, or 10+ years equivalent experience.
• Strong hands-on experience with: Nessus / ACAS vulnerability scanning STIG implementation and validation (Windows) POA&M development and management RMF processes and continuous monitoring
• Experience working within DoD RMF environments (ATO lifecycle).
• Familiarity with: NIST 800-53 controls eMASS or equivalent RMF tools
• Experience administering Windows Server and Active Directory environments.
• Experience with enterprise patching/remediation tools (MECM/SCCM).
• Must meet DoD 8140 (IAT Level II or higher) requirements (e.g., Security+).
• U.S. Citizenship required.
• Active Secret clearance required.
• Must be able to maintain the security clearance required for this position.

Nice To Haves

• Experience supporting Army or DoD enterprise environments.
• Familiarity with: HBSS (or successor tools) Endpoint security platforms
• Experience with PKI, certificate authorities, and CAC authentication.
• Experience with NetApp or enterprise storage systems.
• Familiarity with automation and scripting (PowerShell).
• Understanding of Zero Trust architecture principles.
• Knowledge of office administration and procedures.
• Exceptional judgment capabilities and relationship management skills.
• Excellent communication, teamwork, and client service skills; ability to clearly communicate in discussions and written documents, and to deliver feedback clearly and tactfully.
• Interact with a diverse array of customers and staff in a professional and courteous manner.
• Work independently with accountability for accurate and complete results.
• Be extremely organized and exceptionally detail oriented.
• Work well both independently and in a team environment.
• Be energized by a fast-paced work environment.
• Must be able to communicate with others effectively.
• Analyze information and respond appropriately.
• Manage time wisely and prioritize tasks.
• Provide superior customer service.
• Multi-task in a pleasant manner.
• Work well under pressure.

Responsibilities

• Perform vulnerability scanning using Nessus (ACAS) on Windows systems.
• Analyze scan results and conduct vulnerability triage, prioritization, and reporting.
• Execute and track vulnerability remediation efforts using enterprise tools (e.g. MECM/SCCM).
• Develop, maintain, and manage Plan of Action and Milestones (POA&M) artifacts.
• Apply and validate DISA STIGs for Windows Server and Windows 10/11 systems.
• Support RMF 2.0 lifecycle activities, including: Control implementation Continuous monitoring Security control validation
• Maintain and update eMASS artifacts, including control implementations, vulnerabilities, and system status.
• Support Independent Security Assessments (ISA) and ATO sustainment activities.
• Ensure compliance with NIST 800-53 / CNSSI 1253 controls and DoD cybersecurity policies.
• Support implementation of Zero Trust principles within Windows environments.
• Administer and maintain Windows Server and workstation environments.
• Manage and support Active Directory (AD), including: Users, Groups, OUs Group Policy Objects (GPOs)
• Execute patching and configuration management using tools such as MECM/SCCM.
• Perform and validate system hardening in accordance with STIG requirements.
• Support CAC/Smartcard PKI authentication and certificate lifecycle management.
• Assist with troubleshooting systems that fail compliance or patch baselines.
• Support backup and recovery operations in secure environments.
• Collaborate with DevSecOps teams to integrate security into operational workflows.

Benefits

• Excellent insurance coverage
• 401(k) match
• Generous PTO
• Health and wellness incentives
• Tuition and certification reimbursement
• Countless opportunities to give back to the community through i3 Cares