Senior Cybersecurity Analyst

About The Position

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, or a related technical field.
• 8+ years of experience in cybersecurity or information assurance roles supporting DoD programs.
• Proven experience supporting or partnering with a Government ISSM or leading RMF execution activities.
• Strong technical understanding of Windows system security, including registry controls, GPOs, and STIG application.
• Hands-on experience with NIST SP 800-53, DoDI 8510.01 (RMF), and STIG compliance processes.
• Experience preparing and managing A&A documentation for DoD systems.
• Proficient in cybersecurity tool usage (e.g., ACAS/Nessus, eMASS, HBSS) and Microsoft 365-based workflows.
• Active DoD 8570 IAM Level III certification such as: - CISM - CISSP (or Associate) - GSLC - CASP+
• Current SECRET clearance strongly preferred; Top Secret clearance is a significant plus.

Nice To Haves

• Familiarity with secure communications or electronic systems fielded in tactical environments.
• Understanding of software/hardware integration security in DoD systems.
• Experience supporting DoD test, engineering, or fielding events from a cybersecurity perspective.
• Knowledge of configuration management processes and digital thread environments (e.g., CMPro, SharePoint, Teams).

Responsibilities

• Partner directly with the Government ISSM to plan, execute, and maintain cybersecurity compliance across multiple systems and acquisition phases.
• Lead the development, review, and sustainment of RMF documentation, including: - System Security Plans (SSPs) - Authorization Boundary Diagrams - Privacy Impact Assessments (PIAs) - Ports, Protocols, and Services Management (PPSM) - Plan of Action and Milestones (POA&Ms)
• Conduct and interpret vulnerability scans using tools such as ACAS/Nessus, and recommend or coordinate remediation actions with internal stakeholders and system vendors.
• Apply IAVA and STIG compliance procedures to harden Windows-based systems and other relevant platforms.
• Support the development of secure network architectures and security policies aligned with DoD and NIST standards.
• Participate in or support technical reviews, security assessments, and lifecycle documentation related to secure fielding of tactical communications and sensing systems.
• Assist with cybersecurity inputs to system Configuration Management (CM) processes, change requests, and documentation repositories.
• Mentor junior cybersecurity analysts and systems engineers, helping build technical competency and awareness of DoD cybersecurity policies and practices.
• Communicate risks and mitigation strategies effectively through briefings and technical documentation prepared for government leadership.