Jobs · Analyst

Cybersecurity Policy & RMF Analyst

Cyber Focus AI · United States · 1 wk ago
RemoteRemoteAnalystFull-time

About the role

Cybersecurity Policy and RMF Analyst

Responsibilities

  • Adhere to DoD cybersecurity policy requirements set forth in DoDI 8500.01 and DoDI 8510.01 and their successors.
  • Monitor identified risks and track response actions to ensure they support the customer Risk Management Strategy and are properly documented in a risk registry.
  • Provide recommendations to business and IT leaders on best business practices followed in the industry to mitigate or remediate risks.
  • Schedule, conduct, and track RMF validations for each IT Portfolio.
  • Review security controls, as part of a risk assessment, as needed to support an Authorization to Operate (ATO) of an investment.
  • Review vulnerabilities and identify potential risks based on the type of vulnerability and the potential impact.
  • Identify actions needed to protect information flows to ensure adherence to legal and regulatory standards.
  • Cook up and support the development of plans and procedures to ensure that business-critical services are recovered in the event of a digital risk event.
  • Facilitate and support the development of asset inventories, including digital assets in cloud.
  • Track all technology requests.
  • Track open vulnerabilities and provide a status on each open risk for each IT Portfolio / Investment.
  • Ensure POAMs are current and reflect all known weaknesses.
  • Stay up-to-date with the latest Azure and FedRAMP regulatory changes and industry trends, advising teams on potential impacts and necessary adjustments.

Requirements

  • US Citizenship
  • Acive DoD Secret Clearance (or able to obtain)
  • Bachelor's Degree in an IT related field
  • Meet DoD 8570 Information Assurance Technician (IAT) Level II or Higher (Sec+ CE or Higher)
  • 3+ Years Experience with the Risk Management Framework Process
  • 3+ Years Experience operating the Enterprise Mission Assurance Support Service Application (eMASS)

Qualifications

  • Meet DoD 8570 Information Assurance Technician (IAT) Level II or Higher (Sec+ CE or Higher)

Skills

  • Knowledge of DoD cybersecurity policy requirements
  • Experience with the Risk Management Framework Process
  • Experience operating the Enterprise Mission Assurance Support Service Application (eMASS)
  • Ability to review security controls and vulnerabilities
  • Experience developing and supporting recovery plans
  • Ability to track and update asset inventories
  • Knowledge of Azure and FedRAMP regulatory changes

Benefits

  • Competitive pay
  • Comprehensive health insurance
  • Dental and vision insurance
  • Paid life insurance
  • Paid time off
  • 11 paid holidays
  • Bonuses
  • Tuition reimbursement
  • Unlimited training
  • Collaborative, flexible, innovative work environment

Pay

N/A

Schedule

N/A

Benefits

  • Comprehensive health insurance
  • Dental and vision insurance
  • Paid life insurance
  • Paid time off
  • 11 paid holidays
  • Bonuses
  • Tuition reimbursement
  • Unlimited training
  • Collaborative, flexible, innovative work environment

Concept Plus

Concept Plus is a growing consulting firm headquartered in Fairfax, VA. We are an Oracle Gold Partner, offering deep technical expertise, combined with business insights and an experienced team focused on providing technical solutions for our clients. We are proud to have been recognized as one of the "25 Most Powerful Oracle Solution Providers" in the area! We offer great benefits including competitive pay, comprehensive health insurance, dental and vision insurance, paid life insurance, paid time off, 11 paid holidays, bonuses, tuition reimbursement, unlimited training, and the opportunity to work in a collaborative, flexible, innovative environment! For additional information about our dynamic organization, please visit our website. at www.conceptplus.com.

Equal Opportunity Employer

As such, we will give your application full consideration without regard to your race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation, gender identity, or any other classification protected by federal, state, or local law.

Similar jobs

RMF Security Analyst

LeidosOdenton, MD· 1 wk ago
Information Technology$70k–$126k/yrapply on careers.leidos.com

Cyber Policy Analyst

Booz Allen HamiltonAlexandria, VA· 4 days ago
OTHR$69k–$158k/yrapply on careers.boozallen.com