Sign Up Sign Up Log In Sign Up

RMF/Cyber Security Analyst

ECS is seeking a RMF/Cyber Security Analyst to work in our Charleston, SC .office. 

Job Description:
Provide Risk Management Framework (RMF) support to a DoD program undergoing an ATO DIACAP to RMF transition. Work with program and Cyber Security leadership to develop RMF security artifacts, respond to controls, create/update POA&Ms, attend and participate in A&A activities and status meetings.

• Active participation in providing resolution to Authorization to Operate (ATO), Risk Management Framework Process
• (RMF), Federal Information Security Management Act (FISMA), findings and reports in support of office activities.
• Review, update, or the creation of documents needed to support the closure of findings, execution of associated actions and coordination for submission to the government for review and approval.
• Attend enterprise Information Assurance (IA) related working groups and meetings to identify and execute emerging Information Assurance (IA) policies and/or creation and staffing of new IA policies.
• Conduct agency coordination from various organizations.
• Infrastructure in the handling of Assets and Configuration Items (CI) under the DHA governance of Configuration and Change Management.
• Review and generate correspondence and response as directed on Cyber Security policies and instructions, DISA Information Assurance Vulnerability Alert (IAVA), USCYBERCOM TASKORDS and other operation orders.
• Reviews and evaluates Cyber Security issuances and make recommendation to ensure no inconsistencies in requirements and guidance.Facilitates cyber-security management oversight and technical evaluation of infrastructure to provide effective analysis of cyber security policies and process and ensure timely solutions are provided in accordance with the Risk Management Framework Process lifecycle
• Advises the DHA Infrastructure & Operations (I&) IA team of relevant changes in the information security threat environment.
• Manages and coordinates assigned policies and program initiatives
• Strong depth in applying information system security and risk management practices using DoD, the Intelligence Community, NIST, and CNSS requirements and guideline

Required Skills:

• Experience following NIST Risk Management Framework Processes.
• 5 years of related experience in Cyber-security, information technology, technical writing desired.
• Vulnerability scanners, STIG, NIST SP, Retina, SRR, ACAS (Nessus).
• Experience generating mitigation statements for vulnerabilities and responses to Cyber Security instructions/operation orders.
• Must have excellent written and verbal communication skills, and excellent customer service skills.
• Ability to meet and communicate effectively with management and technical staff.
• Must have an active secret security clearance.
• Bachelor's Degree in Computer Science or related technical discipline, or the equivalent combination of education, professional training or work experience desired.
• DoD 8570 IAT-I (Security +CE)



ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 2300+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.



Company Name:
Security Clearance:
Charleston, South Carolina
United States
Not Specified
Job Number:

Send me email alerts for similar jobs