Senior Cybersecurity Analyst
GovCIO · Kearneysville, WV · 2 wk ago
On-siteInformation Technology$112k/yrFull-time
Responsibilities
- Enforce federal security standards, government compliance baselines, and DISA STIGs across all software product teams and continuous delivery workflows.
- Conduct proactive vulnerability monitoring, security testing, and risk assessments on applications to support modernization and technical debt reduction.
- Collaborate with government technical leadership and vendor-heavy product teams to ensure that delivered capabilities meet strict cybersecurity engineering approaches.
- Perform vulnerability remediation oversight and coordinate with engineering teams to fix software bugs, performance bottlenecks, and security gaps.
- Audit and validate product backlogs and release plans to ensure security requirements are fully incorporated, traced, and prioritized alongside mission needs.
- Assess architectural coherence and security posture across multiple technology domains, reducing the risk of brittle or siloed systems.
- Maintain comprehensive cybersecurity documentation, including system security plans, risk mitigation logs, and standard operating procedures for release train management.
- Provide expert cybersecurity guidance to product owners and development teams, ensuring rapid operational responses to emerging digital mission threats.
Qualifications
- DoD 8570 IAT Level II certification (Security+ CE, CySA+, CCNA Security).
- Cybersecurity analysis experience specializing in application security, software assurance, or cloud security within a federal environment.
- Proven experience analyzing and remediating vulnerabilities identified by automated scanning tools within modern software delivery models (CI/CD).
- Comprehensive operational understanding of DISA STIGs, NIST Risk Management Framework (RMF), and federal authorization boundaries.
- Strong experience embedding security requirements into Agile engineering frameworks, product backlogs, and rapid release environments.
- Proficiency tracking, managing, and reporting cyber risks using enterprise tools (such as Jira, Azure DevOps, Tenable Security Center, or ServiceNow).
- Strong foundational understanding of diverse IT domains including enterprise.
Preferred Skills & Experience
- Experience supporting U.S. Coast Guard, Software Yard, or Department of Homeland Security (DHS) programs.
- Familiarity with USCG PEO C5I enterprise security strategies, software assurance policies, and continuous Authority to Operate (cATO) pathways.
- Relevant professional cybersecurity certifications highly preferred (e.g., CISSP, CEH, CISM, or DevSecOps security credentials).
- Understanding secure containerization concepts (Kubernetes, Docker) and automated security gating within DevSecOps environments.
- Familiarity with hybrid-cloud architecture (AWS, Azure) and securing web applications against OWASP Top 10 vulnerabilities.
Benefits
GovCIO offers a competitive salary range of USD $112,000.00 - USD $142,000.00 /Yr.
Pay
USD $112,000.00 - USD $142,000.00 /Yr.
Schedule
This position is a hybrid position.